Back
  1. Home
  3. Detailed Reference
Download
Article (Scientific journals)
Conviviality-driven access control policy
EL KATEB, Donia; Zannone, N.; MOAWAD, Assaad et al.
2015In Requirements Engineering, 20 (4), p. 363-382
Peer reviewed
Permalink
https://hdl.handle.net/10993/26427
DOI
10.1007/s00766-014-0204-0
 

Files (1)Send toDetailsStatisticsBibliographySimilar publications

Files

Full Text
Conviviality-Driven Access Control Policy.pdf
Publisher postprint (3.93 MB)
Download

All documents in ORBilu are protected by a user license.

Send to


Details


Keywords :
Access control; Conviviality; Negotiable and non-negotiable authorizations; Requirement model; Intelligent agents; Multi agent systems; Access control mechanism; Access control policies; Ambient assisted living; Methodological frameworks; Requirement modeling; Social science concepts
Abstract :
[en] Nowadays many organizations experience security incidents due to unauthorized access to information. To reduce the risk of such incidents, security policies are often employed to regulate access to information. Such policies, however, are often too restrictive, and users do not have the rights necessary to perform assigned duties. As a consequence, access control mechanisms are perceived by users as a barrier and thus bypassed, making the system insecure. In this paper, we draw a bridge between the social concept of conviviality and access control. Conviviality has been introduced as a social science concept for ambient intelligence and multi-agent systems to highlight soft qualitative requirements like user-friendliness of systems. To bridge the gap between conviviality and security, we propose a methodological framework for updating and adapting access control policies based on conviviality recommendations. Our methodology integrates and extends existing techniques to assist system designers in the derivation of access control policies from socio-technical requirements of the system, while taking into account the conviviality of the system. We illustrate our framework using the Ambient Assisted Living use case from the HotCity of Luxembourg. © 2014, Springer-Verlag London.
Disciplines :
Computer science
Identifiers :
eid=2-s2.0-84941996526
Author, co-author :
EL KATEB, Donia ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Computer Science and Communications Research Unit (CSC)
Zannone, N.;  Security Group, Department of Mathematics and Computer Science, Eindhoven University of Technology, P.O. Box 513, Eindhoven, Netherlands
MOAWAD, Assaad ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
CAIRE, Patrice ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
NAIN, Grégory ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Mouelhi, T.;  Interdisciplinary Centre for Security, Reliability and Trust (SnT), University of Luxembourg, Luxembourg City, Luxembourg
LE TRAON, Yves ;  University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
External co-authors :
yes
Language :
English
Title :
Conviviality-driven access control policy
Publication date :
2015
Journal title :
Requirements Engineering
ISSN :
0947-3602
Publisher :
Springer-Verlag London Ltd
Volume :
20
Issue :
4
Pages :
363-382
Peer reviewed :
Peer reviewed
Funders :
NWO - Nederlandse Organisatie voor Wetenschappelijk Onderzoek
Available on ORBilu :
since 03 April 2016

Statistics

Number of views
163 (6 by Unilu)
Number of downloads
216 (3 by Unilu)
More statistics
Scopus citations®
 
6
Scopus citations®
without self-citations
4
OpenCitations
 
2
OpenAlex citations
 
4
WoS citations
 
3

Bibliography

Similar publications


Contact ORBilu