If only I can trust my police! SIM : an agent-based audit solution of access right deployment through open network

Christophe Incoul; Benjamin Gateau; Jocelyn Aubert; Nicolas Bounoughaz; Christophe Feltus

doi:10.1109/CRISIS.2008.4757467

If only I can trust my police! SIM : an agent-based audit solution of access right deployment through open network

Christophe Incoul, Benjamin Gateau, Jocelyn Aubert, Nicolas Bounoughaz, Christophe Feltus

Research output: Contribution in Book/Catalog/Report/Conference proceeding › Conference contribution

449 Downloads (Pure)

Abstract

Dynamic and evolved environment make the Information Systems (IS), and consequently access rights to its components, always more complex to define and to manage. To bring up a contribution for improving that matter, our paper's first objective is to realize the development of an automated deployment of policies from an administrative platform that encompasses business requirements down to infrastructure's components and devices. This objective is achieved by adapting the XACML OASIS framework [22] and by formalizing a protocol for information exchange through different components of a multi-agent system. The second paper's objective aims at providing guaranties that defined and deployed access rights are continuously aligned with business requirements. This objective is completed by complementary developments that aim to perform a systematic and/or on-demand audit of the effective rights against the desired ones. This second objective is achieved by adding new functionality to the proposed agents architecture and by adapting the protocol accordingly. Practically, this research has been performed in the framework of the SIM [1] project and has privileged free and open source components for the prototyping phase.

Original language	English
Title of host publication	Proceedings of International Conference on Risks and Security of Internet and Systems (CRiSIS 2008), Tozeur, Tunisia
Pages	85-92
Number of pages	8
DOIs	https://doi.org/10.1109/CRISIS.2008.4757467
Publication status	Published - 2008

Keywords

multi agent architecture.
Responsibility model
Policy audit
Identity Management

Access to Document

10.1109/CRISIS.2008.4757467

66727Submitted manuscript, 999 KB

http://ieeexplore.ieee.org/xpl/freeabs_all.jsp?arnumber=4757467

Cite this

@inproceedings{3cc8e06ea5a94ae8aa3f869808854d80,

title = "If only I can trust my police! SIM : an agent-based audit solution of access right deployment through open network",

abstract = "Dynamic and evolved environment make the Information Systems (IS), and consequently access rights to its components, always more complex to define and to manage. To bring up a contribution for improving that matter, our paper's first objective is to realize the development of an automated deployment of policies from an administrative platform that encompasses business requirements down to infrastructure's components and devices. This objective is achieved by adapting the XACML OASIS framework [22] and by formalizing a protocol for information exchange through different components of a multi-agent system. The second paper's objective aims at providing guaranties that defined and deployed access rights are continuously aligned with business requirements. This objective is completed by complementary developments that aim to perform a systematic and/or on-demand audit of the effective rights against the desired ones. This second objective is achieved by adding new functionality to the proposed agents architecture and by adapting the protocol accordingly. Practically, this research has been performed in the framework of the SIM [1] project and has privileged free and open source components for the prototyping phase.",

keywords = " multi agent architecture., Responsibility model, Policy audit, Identity Management",

author = "Christophe Incoul and Benjamin Gateau and Jocelyn Aubert and Nicolas Bounoughaz and Christophe Feltus",

year = "2008",

doi = "10.1109/CRISIS.2008.4757467",

language = "English",

pages = "85--92",

booktitle = "Proceedings of International Conference on Risks and Security of Internet and Systems (CRiSIS 2008), Tozeur, Tunisia",

}

If only I can trust my police! SIM : an agent-based audit solution of access right deployment through open network. / Incoul, Christophe; Gateau, Benjamin; Aubert, Jocelyn et al.
Proceedings of International Conference on Risks and Security of Internet and Systems (CRiSIS 2008), Tozeur, Tunisia. 2008. p. 85-92.

Research output: Contribution in Book/Catalog/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - If only I can trust my police! SIM : an agent-based audit solution of access right deployment through open network

AU - Incoul, Christophe

AU - Gateau, Benjamin

AU - Aubert, Jocelyn

AU - Bounoughaz, Nicolas

AU - Feltus, Christophe

PY - 2008

Y1 - 2008

N2 - Dynamic and evolved environment make the Information Systems (IS), and consequently access rights to its components, always more complex to define and to manage. To bring up a contribution for improving that matter, our paper's first objective is to realize the development of an automated deployment of policies from an administrative platform that encompasses business requirements down to infrastructure's components and devices. This objective is achieved by adapting the XACML OASIS framework [22] and by formalizing a protocol for information exchange through different components of a multi-agent system. The second paper's objective aims at providing guaranties that defined and deployed access rights are continuously aligned with business requirements. This objective is completed by complementary developments that aim to perform a systematic and/or on-demand audit of the effective rights against the desired ones. This second objective is achieved by adding new functionality to the proposed agents architecture and by adapting the protocol accordingly. Practically, this research has been performed in the framework of the SIM [1] project and has privileged free and open source components for the prototyping phase.

AB - Dynamic and evolved environment make the Information Systems (IS), and consequently access rights to its components, always more complex to define and to manage. To bring up a contribution for improving that matter, our paper's first objective is to realize the development of an automated deployment of policies from an administrative platform that encompasses business requirements down to infrastructure's components and devices. This objective is achieved by adapting the XACML OASIS framework [22] and by formalizing a protocol for information exchange through different components of a multi-agent system. The second paper's objective aims at providing guaranties that defined and deployed access rights are continuously aligned with business requirements. This objective is completed by complementary developments that aim to perform a systematic and/or on-demand audit of the effective rights against the desired ones. This second objective is achieved by adding new functionality to the proposed agents architecture and by adapting the protocol accordingly. Practically, this research has been performed in the framework of the SIM [1] project and has privileged free and open source components for the prototyping phase.

KW - multi agent architecture.

KW - Responsibility model

KW - Policy audit

KW - Identity Management

U2 - 10.1109/CRISIS.2008.4757467

DO - 10.1109/CRISIS.2008.4757467

M3 - Conference contribution

SP - 85

EP - 92

BT - Proceedings of International Conference on Risks and Security of Internet and Systems (CRiSIS 2008), Tozeur, Tunisia

ER -

If only I can trust my police! SIM : an agent-based audit solution of access right deployment through open network

Abstract

Keywords

Access to Document

Fingerprint

Cite this