Analysis of privacy and security policies

Elisa Bertino; Carolyn Brodie; Seraphin Calo; Lorrie Faith Cranor; Clare-Marie Karat; John Karat; Ninghui Li; Dan Lin; Jorge Lobo; Qun Ni; Prathima Rao; Xiping Wang

doi:10.1147/JRD.2009.5429045

Publication

IBM J. Res. Dev

Paper

Analysis of privacy and security policies

IBM J. Res. Dev

View publication

Abstract

The distributed nature of the environment in which privacy and security policies operate requires tools that help enforce consistency of policy rules across different domains. Furthermore, because changes to policy rules are required as policies evolve over time, such tools can be used by policy administrators to ensure the consistency of policy changes. In this paper, we describe a number of different policy analysis tools and techniques that we have developed over the years and present them in a unified framework in which both privacy and security policies are discussed. We cover dominance analyses of general policies, conflicts among authorizations and prohibitions, and other analyses of obligations, as well as policy similarity analysis and policy distribution. © Copyright 2009 by International Business Machines Corporation.

Date

01 Jan 2009

Publication

IBM J. Res. Dev

Authors

IBM-affiliated at time of publication

Topics

Computer Science

Abstract

Date

Publication

Authors

Topics

Share