Access Control from an Intrusion Detection Perspective

Franqueira, Virginia Nunes Leal (2006) Access Control from an Intrusion Detection Perspective. Project Report. Centre for Telematics and Information Technology (CTIT), Enschede.

[thumbnail of AccessReport.pdf]
Preview
PDF - Published Version
1MB

Abstract

Access control and intrusion detection are essential components for securing an organization's information assets. In practice, these components are used in isolation, while their fusion would contribute to increase the range and accuracy of both. One approach to accomplish this fusion is the combination of their security policies. This report pursues this approach by defining a comparison framework for policy specification languages and using this to survey the languages Ponder, LGI, SPL and PDL from the perspective of intrusion detection. We identified that, even if an access control language has the necessary ingredients for merging policies, it might not be appropriate due to mismatches in overlapping concepts.


Repository Staff Only: item control page