Computers & security, 1995-01, Vol.14 (4), p.323-348
1995
Volltextzugriff (PDF)
Details
- Autor(en) / Beteiligte
- Titel
- Redundant access rights
- Ist Teil von
- Computers & security, 1995-01, Vol.14 (4), p.323-348
- Ort / Verlag
- Amsterdam: Elsevier Ltd
- Erscheinungsjahr
- 1995
- Quelle
- Elsevier Journal Backfiles on ScienceDirect (DFG Nationallizenzen)
- Beschreibungen/Notizen
- In this paper we predict the existence of many unused (or ‘redundant’) access rights in access control systems and consider the implications that this has for security. We present a way of measuring the number of redundant access rights in a contemporary access control system, and provide measurements taken from real computer systems to support our theories. These results help to explain the apparently poor reliability of access control as a security enforcing function, and open new possibilities for improving security based upon heuristics for determining and eliminating redundant access rights.
- Sprache
- Englisch
- Identifikatoren
- ISSN: 0167-4048eISSN: 1872-6208DOI: 10.1016/0167-4048(95)00006-TTitel-ID: cdi_proquest_journals_207384537
- Format
- –
- Schlagworte
- Access control, Computer privacy, Cybersecurity, Privacy, Protection, Redundancy, Reliability, Security, Security management, Studies