Conference proceeding
Adjustable autonomy for cross-domain entitlement decisions
Proceedings of the 3rd ACM workshop on Artificial intelligence and security, pp.65-71
ACM Conferences
CCS '10: 17th ACM Conference on Computer and Communications Security 2010
10/08/2010
DOI: 10.1145/1866423.1866436
Abstract
Cross-domain information exchange is a growing problem, as business and governmental organizations increasingly need to integrate their information systems with those of partially trusted partners. Current identity management and access control technologies operate only within a specific domain and are unable to scale to the asymmetric, heterogeneously administered, and highly restrictive security policies of cross-domain environments. We approach the problem as one of adjustable autonomy, in which the human administrator needs to encode policy intent in a way that allows routine decisions about policy interactions to be safely delegated to the machine. In this paper, we present work toward such a system, combining a lattice representation of access control decisions and client attributes with search through a space of cross-domain mapping relations. This combination enables a policy resolution algorithm that resolves routine policy interactions while flagging potential conflicts for attention from a human administrator.
Details
- Title: Subtitle
- Adjustable autonomy for cross-domain entitlement decisions
- Creators
- Jacob Beal - RTXJonathan Webb - RTXMichael Atighetchi - RTX
- Resource Type
- Conference proceeding
- Publication Details
- Proceedings of the 3rd ACM workshop on Artificial intelligence and security, pp.65-71
- Conference
- CCS '10: 17th ACM Conference on Computer and Communications Security 2010
- Publisher
- ACM
- Series
- ACM Conferences
- DOI
- 10.1145/1866423.1866436
- ISSN
- 1543-7221
- Language
- English
- Date published
- 10/08/2010
- Academic Unit
- Electrical and Computer Engineering
- Record Identifier
- 9984627300402771
Metrics
2 Record Views