New Challenges for Access Control Workshop - April 27, 2005

8 :00

Registration and continental breakfast

8 :30

Welcome – Room: Shakers

8 :35

Invited talk – Room: Shakers

Carlisle Adams.

Access Control:  Current Solutions and New Challenges

 

Track 1 Room: Shakers

Track 2 Room: Mulligan

9:30

Access-control models

Session chair: Tim Bouma

Naftaly Minsky, Constantin Serban.

A scalable mechanism for communal access control in distributed systems

Privacy policy

Session chair: Paul Madsen

Wael Hassan, Luigi Logrippo.

Process based access control

10:00

Dennis Kafura, Markus Lorch.

Improving usability and expressiveness with dynamic policies and obligations

Anne Anderson.

Key differences between XACML and EPAL

10:30

Break

11:00

Access-control models – ctnd

Eric Yuan, Jin Tong.

Attribute based access control (ABAC): a new access control approach for service oriented architectures

Tools

Session chair: Frank Siebenlist

Sylvia Osborn.

Analyzing security using the role graph model, a form of role-based access control

11:30

Konstantin Beznosov.

Recycling authorization: toward secondary and approximate authorizations model (SAAM)

Kathi Fisler, Shriram Krishnamurthi, Leo Meyerovich, Michael Carl Tschantz.

Policy verification and change impact analysis

12:00

Languages

Tim Moses.

Approaches to generalization of XACML

Aleksey Studnev, Kathleen Johnson.

Model-driven design and administration of access control in enterprise applications

12:30

Lunch

2:00

Administration

Session chair: Steve Zeber

Frank Siebenlist, Takuya Mori, Rachana Ananthakrishnan, Liang Fang, Tim Freeman, Kate Keahey, Sam Meder, Olle Mulmo, Thomas Sandholm.

The Globus authorization processing framework The Globus authorization processing framework

Platform access

Session chair: Anne Anderson

Kamel Adi, Luke Sullivan, A El Kabbal.

Access control based on dynamic monitoring for detecting software malicious behaviors

2:30

Erik Rissanen.

Administrative policies in XACML

Ned Smith.

Putting trust into the network: securing your network through trusted access control

3:00

Ramiro Liscano, Kaining Wang.

Context-based coalition access control for spontaneous networks

Applications

Session chair: Steve Lloyd

G.v.Bochmann, Zhen.e.Zhang, Carlisle Adams, Jennifer Chandler.

A security framework combining access control and trust management for mobile e-commerce applications

3:30

Break

4:00

Provisioning

Session chair: Erik Rissanen

Michel Hétu, Anton Stiglic, Claude Vigeant.

Using SPML to provision dynamic XACML rules to manage privacy and access control in Web security infrastructure

Applications - cntd

Andrew Simpson, David Power, Mark Slaymaker, Eugenia Politou.

Towards fine-grained access control in health grids

4:30

Xuebing Qing, Carlisle Adams.

A comparison of compression techniques for XML-based security policies in mobile computing environments

Randy Bablitz. Health information system roles based access control functional requirements and consideration lessons from the Canadian forces health information system project

5:00

Close