Matching Items (4)
Filtering by

Clear all filters

151152-Thumbnail Image.png

Assurance management framework for access control systems

Description
Access control is one of the most fundamental security mechanisms used in the design and management of modern information systems. However, there still exists an open question on how formal access control models can be automatically analyzed and fully realized in secure system development. Furthermore, specifying and managing access control

Access control is one of the most fundamental security mechanisms used in the design and management of modern information systems. However, there still exists an open question on how formal access control models can be automatically analyzed and fully realized in secure system development. Furthermore, specifying and managing access control policies are often error-prone due to the lack of effective analysis mechanisms and tools. In this dissertation, I present an Assurance Management Framework (AMF) that is designed to cope with various assurance management requirements from both access control system development and policy-based computing. On one hand, the AMF framework facilitates comprehensive analysis and thorough realization of formal access control models in secure system development. I demonstrate how this method can be applied to build role-based access control systems by adopting the NIST/ANSI RBAC standard as an underlying security model. On the other hand, the AMF framework ensures the correctness of access control policies in policy-based computing through automated reasoning techniques and anomaly management mechanisms. A systematic method is presented to formulate XACML in Answer Set Programming (ASP) that allows users to leverage off-the-shelf ASP solvers for a variety of analysis services. In addition, I introduce a novel anomaly management mechanism, along with a grid-based visualization approach, which enables systematic and effective detection and resolution of policy anomalies. I further evaluate the AMF framework through modeling and analyzing multiparty access control in Online Social Networks (OSNs). A MultiParty Access Control (MPAC) model is formulated to capture the essence of multiparty authorization requirements in OSNs. In particular, I show how AMF can be applied to OSNs for identifying and resolving privacy conflicts, and representing and reasoning about MPAC model and policy. To demonstrate the feasibility of the proposed methodology, a suite of proof-of-concept prototype systems is implemented as well.
ContributorsHu, Hongxin (Author) / Ahn, Gail-Joon (Thesis advisor) / Yau, Stephen S. (Committee member) / Dasgupta, Partha (Committee member) / Ye, Nong (Committee member) / Arizona State University (Publisher)
Created2012

McNeill, Connie

Description

Connie McNeill came to ASU in the summer of 1976 as head of the payroll project and retired in the summer of 2006 as the West Campus Assistant Vice Provost for Information Technology. Interesting stories include:
1) her role in developing both academic and administrative computing services on the Tempe and

Connie McNeill came to ASU in the summer of 1976 as head of the payroll project and retired in the summer of 2006 as the West Campus Assistant Vice Provost for Information Technology. Interesting stories include:
1) her role in developing both academic and administrative computing services on the Tempe and West Campuses
2) bringing PC’s onto the Tempe Campus
3) the “Space Wars”
4) short stories about Roland Haden and Darel Eschbach
ContributorsGooding, Elmer (Interviewer) / Scheatzle, David (Interviewer) / Arizona State University Retirees Association (Producer)
Created2012-02-29

Eschbach, Barbara

Description

Barbara Eschbach came to ASU in 1977 and worked four years as the Administrative Assistant for the Dean of the College of Architecture. In 1981, she moved to Computing Services, eventually becoming Director of IT Facilities and Resources Administration, retiring in 2006. She returned as Program Coordinator for Economic Affairs,

Barbara Eschbach came to ASU in 1977 and worked four years as the Administrative Assistant for the Dean of the College of Architecture. In 1981, she moved to Computing Services, eventually becoming Director of IT Facilities and Resources Administration, retiring in 2006. She returned as Program Coordinator for Economic Affairs, again retiring in 2008. As the Facility Manager for IT, she played a key role in the construction of the Computing Commons Building and in the renovation of Old Main to house the campus’ telecommunications hub.
ContributorsScheatzle, David (Interviewer) / Arizona State University Retirees Association (Producer)
Created2012-04-24 to 2012-05-16

Eschbach, Darel

Description

Darel Eschbach was Director of Telecommunications and the Tech Shop for IT. He describes the history of computing at ASU from the mid-seventies through Y2K and beyond.

ContributorsScheatzle, David (Interviewer) / Arizona State University Retirees Association (Producer)
Created2012-04-12