Related Concepts
Definition
A policy composition framework supports the integration among different component policies that retain their independence and administrative autonomy.
Background
In the last years, many solutions have been proposed to increase expressiveness and flexibility of authorization languages. These approaches, however, result limiting since they are all based on monolithic and complete authorization specifications. This is a problem in many situations where the restrictions to be enforced come from different input requirements, possibly under the control of different authorities, and where the specifics of some requirements may not even have been known a priori. As an example, in distributed environments, there may be multiple, independent, and geographically distributed entities(i.e., individuals, organizations, institutes, and so on) with authority to control access to their local resources. Each of these parties...
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsRecommended Reading
Bonatti P, De Capitani di Vimercati S, Samarati P (2002) An algebra for composing access control policies. ACM Trans Inform Syst Sec 5(1):1–35
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer Science+Business Media, LLC
About this entry
Cite this entry
De Capitani di Vimercati, S. (2011). Policy Composition. In: van Tilborg, H.C.A., Jajodia, S. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5906-5_826
Download citation
DOI: https://doi.org/10.1007/978-1-4419-5906-5_826
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4419-5905-8
Online ISBN: 978-1-4419-5906-5
eBook Packages: Computer ScienceReference Module Computer Science and Engineering