TY - JOUR
T1 - Usage control enforcement present and future
AU - Pretschner, Alexander
AU - Hilty, Manuel
AU - Schütz, Florian
AU - Schaefer, Christian
AU - Walter, Thomas
PY - 2008/7
Y1 - 2008/7
N2 - The state of the art as well as a possible future of control and signaling mechanisms that is called as consumer-side enforcement mechanisms is presented. Usage is concerned with operations on ucdata, whereas non-usage actions are all those that do not involve ucdata. Usage restrictions prohibit specific usages under given circumstances. Action requirements express mandatory actions that must be executed either unconditionally or after a specified usage has been performed. A control mechanism can be implemented in hardware, software, or a combination of both. Software resides at the application, runtime system, operating system, or CPU level. A control mechanism can either be local or distributed. Enforcement by inhibition, as done in most cases, is sufficient for preventing undesired usages.
AB - The state of the art as well as a possible future of control and signaling mechanisms that is called as consumer-side enforcement mechanisms is presented. Usage is concerned with operations on ucdata, whereas non-usage actions are all those that do not involve ucdata. Usage restrictions prohibit specific usages under given circumstances. Action requirements express mandatory actions that must be executed either unconditionally or after a specified usage has been performed. A control mechanism can be implemented in hardware, software, or a combination of both. Software resides at the application, runtime system, operating system, or CPU level. A control mechanism can either be local or distributed. Enforcement by inhibition, as done in most cases, is sufficient for preventing undesired usages.
UR - http://www.scopus.com/inward/record.url?scp=49249092646&partnerID=8YFLogxK
U2 - 10.1109/MSP.2008.101
DO - 10.1109/MSP.2008.101
M3 - Article
AN - SCOPUS:49249092646
SN - 1540-7993
VL - 6
SP - 44
EP - 53
JO - IEEE Security and Privacy
JF - IEEE Security and Privacy
IS - 4
M1 - 4588229
ER -