SemOpenAlex |

SemOpenAlex

Matches in SemOpenAlex for { <https://semopenalex.org/work/W3028672660> ?p ?o ?g. }

Showing items 1 to 85 of 85 with 100 items per page.

W3028672660 abstract "Recently, the use of well-defined, security-relevant pieces of runtime information, a.k.a., attributes, has emerged as a convenient paradigm for writing, enforcing, and maintaining authorization policies, allowing for extended flexibility and convenience. However, attackers may try to bypass such policies, along with their enforcement mechanisms, by maliciously forging the attributes listed on them, e.g., by compromising the attribute sources : operative systems, software modules, remote services, etc., thus gaining unintended access to protected resources as a result. In such a context, performing a proper risk assessment of authorization policies, taking into account their inner structure: rules, attributes, combining algorithms, etc., along with their corresponding sources, becomes highly convenient to overcome emphzero-day vulnerabilities, before they can be later exploited by attackers. With this in mind, we introduce toolname, an automated risk assessment framework for authorization policies, which, besides being inspired by well-established techniques for vulnerability analysis such as symbolic execution, also introduces the very first approach for proactively assessing risks in the context of a series of attacks based on unintended attribute manipulation via forgery. We validate our approach by resorting to a set of case studies we performed on both real-life policies originally written in the English language, as well as a set of policies obtained from the literature, which show not only the convenience of our approach for risk assessment, but also reveal that some of those policies are vulnerable to attribute-forgery attacks by just compromising one or two of their attributes." @default.
W3028672660 created "2020-06-05" @default.
W3028672660 creator A5005755464 @default.
W3028672660 creator A5010049317 @default.
W3028672660 creator A5025770693 @default.
W3028672660 creator A5031836695 @default.
W3028672660 date "2020-06-10" @default.
W3028672660 modified "2023-10-16" @default.
W3028672660 title "Proactive Risk Assessment for Preventing Attribute-Forgery Attacks to ABAC Policies" @default.
W3028672660 cites W1936559075 @default.
W3028672660 cites W2033238208 @default.
W3028672660 cites W2068189899 @default.
W3028672660 cites W2101512909 @default.
W3028672660 cites W2120050784 @default.
W3028672660 cites W2166602595 @default.
W3028672660 cites W2350636275 @default.
W3028672660 cites W2598848726 @default.
W3028672660 cites W2765848208 @default.
W3028672660 cites W3004248202 @default.
W3028672660 cites W4300655138 @default.
W3028672660 doi "https://doi.org/10.1145/3381991.3395615" @default.
W3028672660 hasPublicationYear "2020" @default.
W3028672660 type Work @default.
W3028672660 sameAs 3028672660 @default.
W3028672660 citedByCount "0" @default.
W3028672660 crossrefType "proceedings-article" @default.
W3028672660 hasAuthorship W3028672660A5005755464 @default.
W3028672660 hasAuthorship W3028672660A5010049317 @default.
W3028672660 hasAuthorship W3028672660A5025770693 @default.
W3028672660 hasAuthorship W3028672660A5031836695 @default.
W3028672660 hasConcept C105795698 @default.
W3028672660 hasConcept C108759981 @default.
W3028672660 hasConcept C112930515 @default.
W3028672660 hasConcept C144133560 @default.
W3028672660 hasConcept C151730666 @default.
W3028672660 hasConcept C154908896 @default.
W3028672660 hasConcept C177264268 @default.
W3028672660 hasConcept C17744445 @default.
W3028672660 hasConcept C199360897 @default.
W3028672660 hasConcept C199539241 @default.
W3028672660 hasConcept C2776889888 @default.
W3028672660 hasConcept C2779343474 @default.
W3028672660 hasConcept C2779777834 @default.
W3028672660 hasConcept C2780598303 @default.
W3028672660 hasConcept C33923547 @default.
W3028672660 hasConcept C38652104 @default.
W3028672660 hasConcept C41008148 @default.
W3028672660 hasConcept C86803240 @default.
W3028672660 hasConcept C95713431 @default.
W3028672660 hasConceptScore W3028672660C105795698 @default.
W3028672660 hasConceptScore W3028672660C108759981 @default.
W3028672660 hasConceptScore W3028672660C112930515 @default.
W3028672660 hasConceptScore W3028672660C144133560 @default.
W3028672660 hasConceptScore W3028672660C151730666 @default.
W3028672660 hasConceptScore W3028672660C154908896 @default.
W3028672660 hasConceptScore W3028672660C177264268 @default.
W3028672660 hasConceptScore W3028672660C17744445 @default.
W3028672660 hasConceptScore W3028672660C199360897 @default.
W3028672660 hasConceptScore W3028672660C199539241 @default.
W3028672660 hasConceptScore W3028672660C2776889888 @default.
W3028672660 hasConceptScore W3028672660C2779343474 @default.
W3028672660 hasConceptScore W3028672660C2779777834 @default.
W3028672660 hasConceptScore W3028672660C2780598303 @default.
W3028672660 hasConceptScore W3028672660C33923547 @default.
W3028672660 hasConceptScore W3028672660C38652104 @default.
W3028672660 hasConceptScore W3028672660C41008148 @default.
W3028672660 hasConceptScore W3028672660C86803240 @default.
W3028672660 hasConceptScore W3028672660C95713431 @default.
W3028672660 hasLocation W30286726601 @default.
W3028672660 hasOpenAccess W3028672660 @default.
W3028672660 hasPrimaryLocation W30286726601 @default.
W3028672660 hasRelatedWork W2005029151 @default.
W3028672660 hasRelatedWork W2049336103 @default.
W3028672660 hasRelatedWork W2083004560 @default.
W3028672660 hasRelatedWork W2099064219 @default.
W3028672660 hasRelatedWork W2149564791 @default.
W3028672660 hasRelatedWork W2744929236 @default.
W3028672660 hasRelatedWork W2950799274 @default.
W3028672660 hasRelatedWork W2950847833 @default.
W3028672660 hasRelatedWork W4298412018 @default.
W3028672660 hasRelatedWork W656129407 @default.
W3028672660 isParatext "false" @default.
W3028672660 isRetracted "false" @default.
W3028672660 magId "3028672660" @default.
W3028672660 workType "article" @default.