Access Control from an Intrusion Detection Perspective

V. Nunes Leal Franqueira

Research output: Book/ReportReportProfessional

21 Downloads (Pure)

Abstract

Access control and intrusion detection are essential components for securing an organization's information assets. In practice, these components are used in isolation, while their fusion would contribute to increase the range and accuracy of both. One approach to accomplish this fusion is the combination of their security policies. This report pursues this approach by defining a comparison framework for policy specification languages and using this to survey the languages Ponder, LGI, SPL and PDL from the perspective of intrusion detection. We identified that, even if an access control language has the necessary ingredients for merging policies, it might not be appropriate due to mismatches in overlapping concepts.
Original languageUndefined
Place of PublicationEnschede
PublisherCentre for Telematics and Information Technology (CTIT)
Number of pages59
Publication statusPublished - Feb 2006

Publication series

NameCTIT Technical Report Series
PublisherCentre for Telematics and Information Technology, University of Twente
No.06-10
ISSN (Print)1381-3625

Keywords

  • EWI-2753
  • METIS-238635
  • IR-65612

Cite this

Nunes Leal Franqueira, V. (2006). Access Control from an Intrusion Detection Perspective. (CTIT Technical Report Series; No. 06-10). Enschede: Centre for Telematics and Information Technology (CTIT).
Nunes Leal Franqueira, V. / Access Control from an Intrusion Detection Perspective. Enschede : Centre for Telematics and Information Technology (CTIT), 2006. 59 p. (CTIT Technical Report Series; 06-10).
@book{f9daf5823b2a4cf6a6a169afa00c4c94,
title = "Access Control from an Intrusion Detection Perspective",
abstract = "Access control and intrusion detection are essential components for securing an organization's information assets. In practice, these components are used in isolation, while their fusion would contribute to increase the range and accuracy of both. One approach to accomplish this fusion is the combination of their security policies. This report pursues this approach by defining a comparison framework for policy specification languages and using this to survey the languages Ponder, LGI, SPL and PDL from the perspective of intrusion detection. We identified that, even if an access control language has the necessary ingredients for merging policies, it might not be appropriate due to mismatches in overlapping concepts.",
keywords = "EWI-2753, METIS-238635, IR-65612",
author = "{Nunes Leal Franqueira}, V.",
year = "2006",
month = "2",
language = "Undefined",
series = "CTIT Technical Report Series",
publisher = "Centre for Telematics and Information Technology (CTIT)",
number = "06-10",
address = "Netherlands",

}

Nunes Leal Franqueira, V 2006, Access Control from an Intrusion Detection Perspective. CTIT Technical Report Series, no. 06-10, Centre for Telematics and Information Technology (CTIT), Enschede.

Access Control from an Intrusion Detection Perspective. / Nunes Leal Franqueira, V.

Enschede : Centre for Telematics and Information Technology (CTIT), 2006. 59 p. (CTIT Technical Report Series; No. 06-10).

Research output: Book/ReportReportProfessional

TY - BOOK

T1 - Access Control from an Intrusion Detection Perspective

AU - Nunes Leal Franqueira, V.

PY - 2006/2

Y1 - 2006/2

N2 - Access control and intrusion detection are essential components for securing an organization's information assets. In practice, these components are used in isolation, while their fusion would contribute to increase the range and accuracy of both. One approach to accomplish this fusion is the combination of their security policies. This report pursues this approach by defining a comparison framework for policy specification languages and using this to survey the languages Ponder, LGI, SPL and PDL from the perspective of intrusion detection. We identified that, even if an access control language has the necessary ingredients for merging policies, it might not be appropriate due to mismatches in overlapping concepts.

AB - Access control and intrusion detection are essential components for securing an organization's information assets. In practice, these components are used in isolation, while their fusion would contribute to increase the range and accuracy of both. One approach to accomplish this fusion is the combination of their security policies. This report pursues this approach by defining a comparison framework for policy specification languages and using this to survey the languages Ponder, LGI, SPL and PDL from the perspective of intrusion detection. We identified that, even if an access control language has the necessary ingredients for merging policies, it might not be appropriate due to mismatches in overlapping concepts.

KW - EWI-2753

KW - METIS-238635

KW - IR-65612

M3 - Report

T3 - CTIT Technical Report Series

BT - Access Control from an Intrusion Detection Perspective

PB - Centre for Telematics and Information Technology (CTIT)

CY - Enschede

ER -

Nunes Leal Franqueira V. Access Control from an Intrusion Detection Perspective. Enschede: Centre for Telematics and Information Technology (CTIT), 2006. 59 p. (CTIT Technical Report Series; 06-10).