Logic in access control

Proceedings - Symposium on Logic in Computer Science

Volumn , Issue , 2003, Pages 228-233

  Abadi, Martín ^a  

^a UNIVERSITY OF CALIFORNIA   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER HARDWARE; COMPUTER PROGRAMMING; COMPUTER SCIENCE; CONTROL SYSTEMS; SECURITY OF DATA; APPLICATION PROGRAMS; COMPUTATION THEORY; COMPUTER CONTROL; COMPUTER CONTROL SYSTEMS; COMPUTER OPERATING SYSTEMS; COMPUTER SYSTEMS PROGRAMMING; LOGIC PROGRAMMING; MACHINERY; MANY VALUED LOGICS; NETWORK SECURITY; SECURITY SYSTEMS; TRANSISTOR TRANSISTOR LOGIC CIRCUITS; UBIQUITOUS COMPUTING;

ACCESS CONTROL LISTS (ACL);

FORMAL LOGIC; ACCESS CONTROL;

AUTHORIZATION; LOGICAL FOUNDATIONS; SECURITY POLICY; VIRTUAL MACHINING;

EID: 0042467968     PISSN: 10436871     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (36)

1. Martín Abadi. On SDSI's linked local name spaces. Journal of Computer Security, 6(1-2):3-21, 1998.
2. Martín Abadi. On access control, data integration, and their languages. In Andrew Herbert and Karen Sprck Jones, editors, Computer systems: Papers for Roger Needham. 2003. The volume, with minor updates, may be published by Springer-Verlag.
3. Martín Abadi, Michael Burrows, Butler Lampson, and Gordon Plotkin. A calculus for access control in distributed systems. ACM Transactions on Programming Languages and Systems, 15(4):706-734, October 1993.
4. Andrew W. Appel and Edward W. Felten. Proof-carrying authentication. In Proceedings of the 5th ACM Conference on Computer and Communications Security, pages 52-62, November 1999.
5. Lujo Bauer, Michael A. Schneider, and Edward W. Felten. A general and flexible access-control system for the Web. In Proceedings of the 11th USENIX Security Symposium 2002, pages 93-108, 2002.
6. Elisa Bertino, Barbara Catania, Elena Ferrari, and Paolo Perlasca. A logical framework for reasoning about access control models. ACM Transactions on Information and System Security, 6(1):71-127, February 2003.
7. Matt Blaze, Joan Feigenbaum, John Ioannidis, and Angelos D. Keromytis. RFC 2704: The KeyNote trust-management system, version 2. On the Web at http://www.ietf.cnri.reston.va.us/rfc/rfc2704. txt, September 1999.
8. Matt Blaze, Joan Feigenbaum, and Jack Lacy. Decentralized trust management. In Proceedings of the 1996 IEEE Symposium on Security and Privacy, pages 164-173, May 1996.
9. Jason Crampton, George Loizou, and Greg O'Shea. A logic of access control. The Computer Journal, 44(2):137-149, 2001.
10. John DeTreville. Binder, a logic-based security language. In Proceedings of the 2002 IEEE Symposium on Security and Privacy, pages 105-113, May 2002.
11. Carl Ellison, Bill Frantz, Butler Lampson, Ron Rivest, Brian Thomas, and Tatu Ylönen. RFC 2693: SPKI certificate theory. On the Web at http://www.ietf.cnri.reston.va.us/rfc/rfc2693.txt, September 1999.
12. Hector Garcia-Molina, Yannis Papakonstantinou, Dallan Quass, Anand Rajaraman, Yehoshua Sagiv, Jeffrey D. Ullman, Vasilis Vassalos, and Jennifer Widom. The TSIMMIS approach to mediation: Data models and languages. Journal of Intelligent Information Systems, 8(2):117-132, 1997.
13. Morrie Gasser, Andy Goldstein, Charlie Kaufman, and Butler Lampson. The Digital Distributed System Security Architecture. In Proceedings of the 1989 National Computer Security Conference, pages 305-319, October 1989.
14. Adam J. Grove and Joseph Y. Halpern. Naming and identity in epistemic logics, I: The propositional case. Journal of Logic and Computation, 3(4):345-378, 1993.
15. Joseph Y. Halpern and Ron van der Meyden. A logic for SDSI's linked local name spaces. Journal of Computer Security, 9(1-2):47-74, 2001.
16. Joseph Y. Halpern and Ron van der Meyden. A logical reconstruction of SPKI. In Proceedings of the 14th IEEE Computer Security Foundations Workshop, pages 59-72, June 2001.
17. Michael A. Harrison, Walter L. Ruzzo, and Jeffrey D. Ullman. Protection in operating systems. Communications of the ACM, 19(8):461-471, August 1976.
18. Jon Howell and David Kotz. A formal semantics for SPKI. In Proceedings of the Sixth European Symposium on Research in Computer Security (ESORICS 2000), volume 1895 of Lecture Notes in Computer Science, pages 140-158. Springer-Verlag, 2000.
19. Sushil Jajodia, Pierangela Samarati, and V. S. Subrahmanian. A logical language for expressing authorizations. In Proceedings of the 1997 IEEE Symposium on Security and Privacy, pages 31-42, May 1997.
20. Sushil Jajodia, Pierangela Samarati, V. S. Subrahmanian, and Eliza Bertino. A unified framework for enforcing multiple access control policies. In Proceedings of the ACM SIGMOD International Conference on Management of Data, volume 26(2) of SIGMOD Record, pages 474-485, May 1997.
21. Trevor Jim. SD3: A trust management system with certified evaluation. In Proceedings of the 2001 IEEE Symposium on Security and Privacy, pages 106-115, May 2001.
22. Butler Lampson, Martín Abadi, Michael Burrows, and Edward Wobber. Authentication in distributed systems: Theory and practice. ACM Transactions on Computer Systems, 10(4):265-310, November 1992.
23. Butler W. Lampson. Protection. In Proceedings of the 5th Princeton Conference on Information Sciences and Systems, pages 437-443, 1971.
24. Ninghui Li. Local names in SPKI/SDSI. In Proceedings of the 13th IEEE Computer Security Foundations Workshop, pages 2-15, July 2000.
25. Ninghui Li, Benjamin N. Grosof, and Feigenbaum. Delegation logic: A logic-based approach to distributed authorization. ACM Transactions on Information and System Security, 6(1):128-171, February 2003.
26. [26] Ninghui Li and John C. Mitchell. Datalog with constraints: A foundation for trust-management languages. In Proceedings of the Fifth International Symposium on Practical Aspects of Declarative Languages (PADL 2003), volume 2562 of Lecture Notes in Computer Science, pages 58-73. Springer-Verlag, January 2003.
27. Ninghui Li, John C. Mitchell, and William H. Winsborough. Design of a role-based trust-management framework. In Proceedings of the 2002 IEEE Symposium on Security and Privacy, pages 114-130, May 2002.
28. Ninghui Li, William H. Winsborough, and John C. Mitchell. Beyond proof-of-compliance: Safety and availability analysis in trust management. In Proceedings of the 2003 IEEE Symposium on Security and Privacy, May 2003. To appear.
29. George C. Necula. Proof-carrying code. In Conference record of POPL '97, the 24th ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, pages 106-119, 1997.
30. Ioannis G. Papakonstantinou. Query processing in heterogeneous information systems. PhD thesis, Stanford University, 1997. Available at http://www.db.ucsd.edu/people/yannis.htm.
31. Ronald L. Rivest and Butler Lampson. SDSI - A Simple Distributed Security Infrastructure. On the Web at http://theory.lcs.mit.edu/̃cis/sdsi.html, 1996.
32. John Rushby. Design and verification of secure systems. Proceedings of the 8th ACM Symposium on Operating System Principles, ACM Operating Systems Review, 15(5):12-21, December 1981.
33. Dan S. Wallach, Andrew W. Appel, and Edward W. Felten. SAFKASI: a security mechanism for language-based systems. ACM Transactions on Software Engineering and Methodology, 9(4):341-378, October 2000.
34. Edward Wobber, Martín Abadi, Michael Burrows, and Butler Lampson. Authentication in the Taos operating system. ACM Transactions on Computer Systems, 12(1):3-32, February 1994.
35. extensible Access Control Markup Language (XACML) version 1.0. OASIS Standard, at http://www.oasis-open.org/committees/xacml/repository/, 2003.
36. extensible Rights Markup Language (XrML) version 2.0. At http://www.xrml.org/.