The successful operation of NATO missions requires the effective and secure sharing of information among coalition partners and external organizations, while avoiding the disclosure of sensitive information to unauthorized users. To resolve the conflict between confidentiality and availability in a dynamic coalition and network environment while being able to dynamically respond to changes in protection requirements and release conditions, NATO is developing a new information sharing infrastructure. In this paper we present the Content-based Protection and Release (CPR) access control model for the NATO information sharing infrastructure. We define a declarative specification language for CPR based on the first-order logical framework underlying a class of efficient theorem-proving tools, called Satisfiability Modulo Theories solvers, and describe how they can support answering authorization queries. We illustrate the ideas in a use case scenario drawn from the NATO Passive Missile Defence system for simulating the consequences of intercepting missile attacks. © 2014 Springer International Publishing Switzerland.

Formal modelling of content-based protection and release for access control in NATO operations / Armando, A.; Oudkerk, S.; Ranise, S.; Wrona, K.. - 8352:(2014), pp. 227-244. (Intervento presentato al convegno 6th International Symposium on Foundations and Practice of Security, FPS 2013 tenutosi a La Rochelle, fra nel 2013) [10.1007/978-3-319-05302-8_14].

Formal modelling of content-based protection and release for access control in NATO operations

Ranise S.;
2014-01-01

Abstract

The successful operation of NATO missions requires the effective and secure sharing of information among coalition partners and external organizations, while avoiding the disclosure of sensitive information to unauthorized users. To resolve the conflict between confidentiality and availability in a dynamic coalition and network environment while being able to dynamically respond to changes in protection requirements and release conditions, NATO is developing a new information sharing infrastructure. In this paper we present the Content-based Protection and Release (CPR) access control model for the NATO information sharing infrastructure. We define a declarative specification language for CPR based on the first-order logical framework underlying a class of efficient theorem-proving tools, called Satisfiability Modulo Theories solvers, and describe how they can support answering authorization queries. We illustrate the ideas in a use case scenario drawn from the NATO Passive Missile Defence system for simulating the consequences of intercepting missile attacks. © 2014 Springer International Publishing Switzerland.
2014
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Germany
Springer Verlag
978-3-319-05301-1
978-3-319-05302-8
Armando, A.; Oudkerk, S.; Ranise, S.; Wrona, K.
Formal modelling of content-based protection and release for access control in NATO operations / Armando, A.; Oudkerk, S.; Ranise, S.; Wrona, K.. - 8352:(2014), pp. 227-244. (Intervento presentato al convegno 6th International Symposium on Foundations and Practice of Security, FPS 2013 tenutosi a La Rochelle, fra nel 2013) [10.1007/978-3-319-05302-8_14].
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/333024
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 6
  • ???jsp.display-item.citation.isi??? ND
social impact