Dynamic access control

Prasad Naldurg, Roy H. Campbell
2003 Proceedings of the eighth ACM symposium on Access control models and technologies - SACMAT '03  
We investigate the cost of changing access control policies dynamically as a response action in computer network defense. We compare and contrast the use of access lists and capability lists in this regard, and develop a quantitative feel for the performance overheads and storage requirements. We also explore the issues related to preserving safety properties and trust assumptions during this process. We suggest augmentations to policy specifications that can guarantee these properties in spite
more » ... of dynamic changes to system state. Using the lessons learned from this exercise, we apply these techniques in the design of dynamic access controls for dynamic environments.
doi:10.1145/775412.775442 dblp:conf/sacmat/NaldurgC03 fatcat:l36cejsb2jhuljtmxpvwhp2swm