检索结果-内蒙古大学图书馆

25th acm symposium on access control models and technologies (SacmAT)

作者： Xu, Dianxiang Shrestha, Roshan Shen, Ning Univ Missouri Dept Comp Sci Elect Engn Kansas City MO USA Boise State Univ Dept Comp Sci Boise ID 83725 USA

ISBN: (纸本)9781450375689

While the existing methods for testing XacmL policies have varying levels of effectiveness, none of them can reveal the majority of policy faults. the undisclosed faults may lead to unauthorized access and denial of service. this paper presents an approach to strong mutation testing of XacmL policies that automatically generates tests from the mutants of a given policy. Such mutants represent the targeted faults that may appear in the policy. In this approach, we first compose the strong mutation constraints that capture the semantic difference between each mutant and its original policy. then, we use a constraint solver to derive an access request (i.e., test). the test suite generated from all the mutants of a policy can achieve a perfect mutation score, thus uncover all hypothesized faults or demonstrate their absence. Based on the mutation-based approach, this paper further explores optimal test suite that achieves a perfect mutation score without duplicate tests. To evaluate the proposed approach, our experiments have included all the subject policies in the relevant literature and used a number of new policies. the results demonstrate that: (1) it is scalable to generate a mutation-based test suite to achieve a perfect mutation score, (2) it can be impractical to generate the optimal test suite due to the expensive removal of duplicate tests, (3) different from the results of the existing study, the modified-condition/decision coverage-based method, currently the most effective one, has low mutation scores for several policies.

关键词： access control XacmL mutation testing constraint solving test generation

来源：评论

学校读者我要写书评

暂无评论

Posture control of a Four-Wheel-Legged Robot With a Suspension System

引用

IEEE access 2020年 8卷 152790-152804页

作者： Ni, Liwei Ma, Fangwu Wu, Liang Jilin Univ State Key Lab Automot Simulat & Control Changchun 130012 South Korea Jilin Univ Coll Automot Engn Changchun 130012 Peoples R China

To achieve posture control and ride comfort (vibration isolation performance) of a robot in unstructured terrain, a novel four-wheel-legged robot (FWLR) with an actively-passively suspension system is first designed. In the suspension system, the active parts are responsible for posture control and the passive parts are responsible for vibration isolation. then, a closed-loop and decoupled posture control model with 11 DOF are proposed, with which we designed the posture controller with a second-order low-pass filter (SLPF). To test the posture control performance of FWLR in unstructured terrain, both simulation and experiment are carried out, the simulation and experimental results show that the posture angles in unstructured terrain are reduced by 54.65% and 59% on average, respectively. In addition, the frequency response shows that the posture angles are reduced by more than 50% in low-frequency unstructured terrain. Finally, to validate the ride comfort of FWLR, dynamic models with different degrees of freedom (DOF) are established and simulated, and the results present that the ride comfort can be improved with the posture angular acceleration is reduced by 15.83% and 46.7% on average. Generally, with the actively-passively suspension system proposed in this article, FWLR can be equipped with excellent ride comfort and posture control in unstructured terrain. the research in this article has potential reference value and practical value for enriching the posture control of robots and vehicles.

关键词： Wheel-legged robot dynamic models posture control ride comfort

来源：评论

学校读者我要写书评

暂无评论

Proactive Risk Assessment for Preventing Attribute-Forgery Attacks to ABAC Policies 20

Proactive Risk Assessment for Preventing Attribute-Forgery A...

引用

25th acm symposium on access control models and technologies (SacmAT)

作者： Rubio-Medrano, Carlos E. Claramunt, Luis Jogani, Shaishavkumar Ahn, Gail-Joon Arizona State Univ Tempe AZ 85287 USA

ISBN: (纸本)9781450375689

Recently, the use of well-defined, security-relevant pieces of run-time information, a.k.a., attributes, has emerged as a convenient paradigm for writing, enforcing, and maintaining authorization policies, allowing for extended flexibility and convenience. However, attackers may try to bypass such policies, along with their enforcement mechanisms, by maliciously forging the attributes listed on them, e.g., by compromising the attribute sources: operative systems, software modules, remote services, etc., thus gaining unintended access to protected resources as a result. In such a context, performing a proper risk assessment of authorization policies, taking into account their inner structure: rules, attributes, combining algorithms, etc., along with their corresponding sources, becomes highly convenient to overcome zero-day vulnerabilities, before they can be later exploited by attackers. With this in mind, we introduce RiskPol, an automated risk assessment framework for authorization policies, which, besides being inspired by well-established techniques for vulnerability analysis such as symbolic execution, also introduces the very first approach for proactively assessing risks in the context of a series of attacks based on unintended attribute manipulation via forgery. We validate our approach by resorting to a set of case studies we performed on both real-life policies originally written in the English language, as well as a set of policies obtained from the literature, which show not only the convenience of our approach for risk assessment, but also reveal that some of those policies are vulnerable to attribute-forgery attacks by just compromising one or two of their attributes.

关键词： Attribute-based access control Risk Management Attribute Forgery Policy Bypassing Zero-Day Vulnerabiities

来源：评论

学校读者我要写书评

暂无评论

13th International Joint Conference on Biomedical Engineering Systems and technologies, BIOSTEC 2020

13th International Joint Conference on Biomedical Engineerin...

引用

13th International Joint Conference on Biomedical Engineering Systems and technologies, BIOSTEC 2020

ISBN: (纸本)9783030723781

the proceedings contain 29 papers. the special focus in this conference is on Biomedical Engineering Systems and technologies. the topics include: Classification of Biochemical Pathway Robustness with Neural Networks for Graphs;the Extended i-NSS: An Intelligent EEG Tool for Diagnosing and Managing Epilepsy;Idle State Detection with an Autoregressive Multiple Model Probabilistic Framework in SSVEP-Based Brain-Computer Interfaces;exploring Inertial Sensor Fusion Methods for Direct Ergonomic Assessments;PDC-MI Method for EEG Functional Conectivity Analysis;comparison of Medical Image Evaluations in Magnetic Resonance Cholangiopancreatography through Image J;evaluating a Comparing Deep Learning Architectures for Blood Glucose Prediction;cognitive Internet of Medical things Architecture for Decision Support Tool to Detect Early Sepsis Using Deep Learning;interoperability Evaluation in Building Automation and Health Smart Homes Using Tag-Based Semantic Frameworks;novel Compact Robotic Flow control Valve for Bioinspired Exosuit and Other Applications;pathobox: the Collaborative Tele-pathology Platform with access Management;Combining Rhythmic and Morphological ECG Features for Automatic Detection of Atrial Fibrillation: Local and Global Prediction models;privacy by Design for Neuropsychological Studies Based on an mHealth App;food Data Normalization Using Lexical and Semantic Similarities Heuristics;muscle Deformation Using Position Based Dynamics;an Assessment of National Health Information Systems in Ireland Using Nationally Agreed Standards;leveraging Clinical Notes for Enhancing Decision-Making Systems with Relevant Patient Information;mobile Marketing in Health: User Experience Guiding the Implementation of a Medical Booking Application;stochastic Workflow Modeling in a Surgical Ward: Towards Simulating and Predicting Patient Flow;classification of Eating Behaviors in Unconstrained Environments.

关键词：

来源：评论

学校读者我要写书评

暂无评论

Securing Content in Decentralized Online Social Networks:Solutions, Limitations, and the Road Ahead 22

Securing Content in Decentralized Online Social Networks&#58...

引用

Proceedings of the 27th acm on symposium on access control models and technologies

作者： Roberto Di Pietro Hamad Bin Khalifa University Doha Qatar

ISBN: (纸本)9781450393577

the most popular On-line Social Networks (OSNs) are based on centralized architectures where service providers (e.g., Facebook, Twitter, or Instagram) have full control over the data published by their user---a requirement of their business model, based on the monetization of the cited data [2]. In addition, such centralized architectures also increase the risk of censorship, surveillance, and information leakage [3]. Distributed On-line Social Networks (DOSNs), instead, are typically based on a P2P architecture, where there is no central service provider in control of user data. Indeed, the contents that are published on DOSNs are stored on user-provided devices, that also cooperate to execute the tasks needed to realize the intended service. Most of the popular DOSNs, in an effort to help users smoothly regulate content sharing in adherence to their privacy preferences, allow to organize users in groups. In this way, each user can choose to share content with the users belonging to specific groups only. the lack of a (logically) centralized, third party managed, reliable infrastructure to guarantee content availability---whether a given user is on-line or not---has led to have the contents published by a user to be stored on the devices of other users as well. Indeed, such a choice increases the chances that at least one of the cooperating users device (and the contents stored therein) is online when the content is required. Given the two above introduced (conflicting) requirements: group-oriented privacy setting and distributed storage, a critical feature of DOSNs is that published contents must be properly protected by the DOSN infrastructure, in order to ensure that they can be accessed only by users that have the appropriate permissions---granted by the publishers. Hence, DOSNs require efficient solutions for protecting the privacy of the contents published by each user with respect to the other users of the social network. While some preliminary solutions hav

关键词： models decentralized on-line social networks access control confidentiality availability

来源：评论

学校读者我要写书评

暂无评论

Poster: Unified access control for Surgical Robotics 19

Poster: Unified Access Control for Surgical Robotics

引用

24th acm symposium on access control models and technologies (SacmAT)

作者： Shah, Ryan Nagaraja, Shishir Univ Strathclyde Glasgow Lanark Scotland

来源：评论

学校读者我要写书评

暂无评论

Mutual Authorizations: Semantics and Integration Issues 19

Mutual Authorizations: Semantics and Integration Issues

引用

24th acm symposium on access control models and technologies (SacmAT)

作者： Suntaxi, Gabriela El Ghazi, Aboubakr Achraf Boehm, Klemens Karlsruhe Inst Technol Karlsruhe Germany

ISBN: (纸本)9781450367530

Studies in fields like psychology and sociology have revealed that reciprocity is a powerful determinant of human behavior. None of the existing access control models however captures this reciprocity phenomenon. In this paper, we introduce a new kind of grant, which we call mutual, to express authorizations that actually do this, i.e., users grant access to their resources only to users who allow them access to theirs. We define the syntax and semantics of mutual authorizations and show how this new grant can be included in the Role-Based access control model, i.e., extend RBAC with it.

关键词： access control models reciprocity mutual authorizations

来源：评论

学校读者我要写书评

暂无评论

Generalized Mining of Relationship-Based access control Policies in Evolving Systems 19

Generalized Mining of Relationship-Based Access Control Poli...

引用

24th acm symposium on access control models and technologies (SacmAT)

作者： Iyer, Padmavathi Masoumzadeh, Amirreza SUNY Albany Albany NY 12222 USA

ISBN: (纸本)9781450367530

Relationship-based access control (ReBAC) provides a flexible approach to specify policies based on relationships between system entities, which makes them a natural fit for many modern information systems, beyond online social networks. In this paper we are concerned with the problem of mining ReBAC policies from lower-level authorization information. Mining ReBAC policies can address transforming access control paradigms to ReBAC, reformulating existing ReBAC policies as more information becomes available, as well as inferring potentially unknown policies. Particularly, we propose a systematic algorithm for mining ReBAC authorization policies, and a first of its kind approach to mine graph transition policies that govern the evolution of ReBAC systems. Experimental evaluation manifests efficiency of the proposed approaches.

关键词： relationship-based access control policy mining graph transition

来源：评论

学校读者我要写书评

暂无评论

An OpenRBAC Semantic Model for access control in Vehicular Networks 19

An OpenRBAC Semantic Model for Access Control in Vehicular N...

引用

24th acm symposium on access control models and technologies (SacmAT)

作者： Alsarra, Sultan Yen, I-Ling Huang, Yongtao Bastani, Farokh thuraisingham, Bhavani Univ Texas Dallas Richardson TX 75083 USA

ISBN: (纸本)9781450367530

Inter-vehicle communication has the potential to significantly improve driving safety, but also raises security concerns. the fundamental mechanism to govern information sharing behaviors is access control. Since vehicular networks have a highly dynamic and open nature, access control becomes very challenging. Existing works are not applicable to the vehicular world. In this paper, we develop a new access control model, openRBAC, and the corresponding mechanisms for access control in vehicular systems. Our approach lets the accessee define a relative role hierarchy, specifying all potential accessor roles in terms of their relative perception to the accessees. access control policies are defined for the relative roles in the hierarchy. Since the accessee has a clear understanding of the relative roles defined by itself, the policy definitions can be precise and less flawed.

关键词： access control role-based access control attribute-based access control vehicular systems vehicular network

来源：评论

学校读者我要写书评

暂无评论

CMCAP: Ephemeral Sandboxes for Adaptive access control 19

CMCAP: Ephemeral Sandboxes for Adaptive Access Control

引用

24th acm symposium on access control models and technologies (SacmAT)

作者： Bucuti, theogene Hakiza Dantu, Ram Morozov, Kirill Univ North Texas Dept Comp Sci & Engn Denton TX 76203 USA

ISBN: (纸本)9781450367530

We present CMCAP (context-mapped capabilities), a decentralized mechanism for specifying and enforcing adaptive access control policies for resource-centric security. Policies in CMCAP express runtime constraints defined as containment domains with context-mapped capabilities, and ephemeral sandboxes for dynamically enforcing desired information flow properties while preserving functional correctness for the sandboxed programs. CMCAP is designed to remediate DAC's weakness and address the inflexibility that makes current MAC frameworks impractical to the common user. We use a Linux-based implementation of CMCAP to demonstrate how a program's dynamic profile is used for access control and intrusion prevention.

关键词： adaptive access control runtime containment intrusion prevention ephemeral sandboxes information flow control

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：