Do As I SaY! Programmatic Access Control with Explicit Identities

14 years 6 months ago

Download reed.cs.depaul.edu

We address the programmatic realization of the access control model of security in distributed systems. Our aim is e the gap between abstract/declarative policies and their concrete/operational implementations. We present a programming formalism (which extends the asynchronous pi-calculus with explicit principals) and a speciﬁcation logic (which extends Datalog with primitives from authorization logic). We provide two kinds of static analysis methods to tie implementation to speciﬁcation. Type checking determines that a program is a sound implementation of policy; i.e., that all granted accesses are safe in the face of arbitrary opponents. Model checking determines a degree of completeness; i.e., that accesses permitted by the policy are actually granted in the implementation.

Andrew Cirillo, Radha Jagadeesan, Corin Pitcher, J

Real-time Traffic

Access Control Model | Checking Determines | CSFW 2007 | Security Privacy | Type Checking Determines |

claim paper

Post Info
More Details (n/a)

Added	02 Jun 2010
Updated	02 Jun 2010
Type	Conference
Year	2007
Where	CSFW
Authors	Andrew Cirillo, Radha Jagadeesan, Corin Pitcher, James Riely

Comments (0)

Sciweavers

Do As I SaY! Programmatic Access Control with Explicit Identities

Access Control Model | Checking Determines | CSFW 2007 | Security Privacy | Type Checking Determines |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers