Access control policies and companies data transmission management

Abstract : The main objective of this thesis is to solve the problem of unintentional data leakage within companies. These leaks can be caused by the use of both Access Control (AC) and Transmission Control (TC) policies. Moreover, using both AC and TC can lead to many problems for the security experts and the administrators that are in charge of the definition and maintenance of such policies. Among these problems, we can underline the genericity problem of existing models, the coherence problem between AC and TC rules and problems such as density, adaptability, interoperability and reactivity. In this thesis, we first define a meta-model to take into account the main AC models that are used within companies. We also propose a coherent and semi-automatic generation of TC policies based on existing AC to tackle the coherence problem. Moreover, several mechanisms have been proposed to tackle complexity, adaptability and interoperability issues. In order to validate the relevance of our solution, we have first conducted a survey among security experts and administrators. This survey has highlighted several information regarding the policies’ size and density, the tiresomeness of having to define them and the interest for several functionalities that can cover the aforementioned problems. Finally, our solution has been tested on stochastically generated and real policies in order to take performances and reactivity under consideration. Results of these tests have validated that our solution covers the underlined problems.
Document type :
Theses
Complete list of metadatas

Cited literature [113 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-01544855
Contributor : Abes Star <>
Submitted on : Thursday, June 22, 2017 - 11:15:31 AM
Last modification on : Monday, November 5, 2018 - 3:52:10 PM
Long-term archiving on : Sunday, December 17, 2017 - 3:26:57 PM

File

2017AZUR4012.pdf
Version validated by the jury (STAR)

Identifiers

  • HAL Id : tel-01544855, version 1

Collections

Citation

Yoann Bertrand. Access control policies and companies data transmission management. Other [cs.OH]. Université Côte d'Azur, 2017. English. ⟨NNT : 2017AZUR4012⟩. ⟨tel-01544855⟩

Share

Metrics

Record views

502

Files downloads

503