KIT | KIT-Bibliothek | Impressum | Datenschutz

Architectural Access Control Policy Refinement and Verification under Uncertainty

Hahner, Sebastian ORCID iD icon


In our connected world, confidentiality is a central quality requirement. A commonly used mechanism to meet confidentiality requirements is access control. However, access control policies are usually not defined on the architectural abstraction level and are imprecise during design time due to the high degree of uncertainty. This impedes early considerations of confidentiality as implied by "Privacy by Design". We propose an approach to refine and verify access control policies while handling uncertainty that fills the gap between high-level confidentiality requirements and low-level access control.

Verlagsausgabe §
DOI: 10.5445/IR/1000139152
Veröffentlicht am 21.10.2021
Cover der Publikation
Zugehörige Institution(en) am KIT Institut für Informationssicherheit und Verlässlichkeit (KASTEL)
Publikationstyp Proceedingsbeitrag
Publikationsjahr 2021
Sprache Englisch
Identifikator ISSN: 1613-0073
KITopen-ID: 1000139152
HGF-Programm 46.23.03 (POF IV, LK 01) Engineering Security for Mobility Systems
Erschienen in Companion Proceedings of the 15th European Conference on Software Architecture
Veranstaltung 15th European Conference on Software Architecture (ECSA 2021), Online, 13.09.2021 – 17.09.2021
Verlag RWTH Aachen
Serie CEUR Workshop Proceedings ; 2978
Schlagwörter Software Architecture, Access Control, Uncertainty, Confidentiality
Nachgewiesen in Scopus
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft
KITopen Landing Page