Attention GMU students! Learn about the 2006 Information Assurance Scholarship Program.
|Home |Directions |Seminars |Research |Courses |Scholarship |Fellowships |Internships |Jobs |Alumni |Faculty |Projects |Sponsors |About |Director's Page |
Center for Secure Information Systems
Designated as a Center of Academic Excellence in Information Assurance Education by the National Security Agency


News & Events

Scholarship & Fellowships

Academic Programs

About the Center
  • Introduction & Contacts
  • Research and Scope of the Center
  • Faculty Members and Visiting Research Associates
  • Projects & Publications
  • Publications by CSIS members
  • Research Sponsors and Supporters
  • CSIS Corporate Sponsor Program

    • Current CSIS Corporate Sponsors:
    The Mitre Corporation Microsoft Research DynCorp Symantec Corporation Become a CSIS Sponsor!


    Some local links
    Requirements-Based Access Control Analysis and Policy Specification

    Qingfeng He
    Ph.D. Candidate
    Department of Computer Science
    North Carolina State University

    Date : Tuesday, March 22, 2005
    Time : 10:30 - 11:30 a.m.
    Location : Science & Tech II, Room 430A

    Abstract:

    Access control is a mechanism for achieving confidentiality and integrity in software systems. Access control policies (ACPs) are security requirements that define how access is managed and the high-level rules of who can access what information, under what conditions. Traditionally, access control policies are often specified after a system is designed and deployed. Because ACP specification is typically isolated from requirements analysis, it may result in policies that are not in compliance with system requirements. In this talk, a Requirements-based access Control Analysis and Policy Specification (ReCAPS) approach for deriving ACPs from various information sources will be presented. ReCAPS provides prescriptive guidance for how to specify both function-level and database-level ACPs. It helps clarify ambiguities, resolve conflicts, and provides traceability support, ensuring consistency among software artifacts.

    Bio: Qingfeng He is a PhD candidate in the Computer Science department at North Carolina State University, where he is a member of the Cyber Defense Lab and The Privacy Place research group. His research interests include software requirements engineering, security and privacy requirements, and policy specification. Qingfeng won the CISCO Systems Information Assurance Scholarship in Spring 2005. He has a BE and an ME in electrical engineering from Tsinghua University, China. He is a student member of the ACM and the IEEE.

    Seminar Point of Contact: Prof. Francesco Parisi-Presicce

    |Home |Directions |Seminars |Research |Courses |Scholarship |Fellowships |Internships |Jobs |Alumni |Faculty |Projects |Sponsors |About |Director's Page |

    Designated as a Center of Academic Excellence in Information Assurance Education by the National Security Agency

    The Committee on National Security Systems and the National Security Agency have certified that George Mason University offers a set of courseware that has been reviewed by National Level Information Assurance Subject Matter Experts and determined to meet National Training Standards for Information Systems Security Professionals, NSTISSI No. 4011, 4012, and 4013 for academic years 2005 - 2008.


    The Mitre Corporation Microsoft Research DynCorp Symantec Corporation Air Force Office of Scientific Research Defense Advanced Research Projects Agency (DARPA) National Science Foundataion U.S. Army Research Office Office of Naval Research U.S. Department of Defense Rome Laboratory Naval Research Lab DoD Computer Forensics Laboratory

    The Information Assurance Scholarship Program is open to U.S. Citizens pursuing undergraduate, masters, and doctoral degrees from the Centers of Academic Excellence in Information Assurance Education

    Copyright © 1994-2004 Center for Secure Information Systems, George Mason University.