Beyond proof-of-compliance: Safety and availability analysis in trust management

Proceedings - IEEE Symposium on Security and Privacy

Volumn 2003-January, Issue , 2003, Pages 123-139

  Li, Ninghui ^a   Winsborough, W H ^b   Mitchell, John C ^a  

^a Stanford University   (United States)

^b Network Associates Laboratories   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ACCESS CONTROL; COMPUTATIONAL LINGUISTICS; POLYNOMIAL APPROXIMATION;

AVAILABILITY ANALYSIS; DISTRIBUTED ACCESS CONTROLS; DISTRIBUTED POLICIES; PARTIAL CONTROL; POLYNOMIAL-TIME; SAFETY PROPERTY; SECURITY PROPERTIES; TRUST MANAGEMENT;

COMPUTABILITY AND DECIDABILITY;

EID: 33744503327     PISSN: 10816011     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SECPRI.2003.1199332     Document Type: Conference Paper

References (21)

1. Martín Abadi. On SDSI's linked local name spaces. Journal of Computer Security, 6(1-2):3-21, 1998.
2. Matt Blaze, Joan Feigenbaum, John Ioannidis, and Angelos D. Keromytis. The KeyNote trustmanagement system, version 2. IETF RFC 2704, September 1999.
3. Ajay Chander, Drew Dean, and John C. Mitchell. A state-transition model of trust management and access control. In Proceedings of the 14th IEEE Computer Security Foundations Workshop, pages 27-43. IEEE Computer Society Press, June 2001.
4. Dwaine Clarke, Jean-Emile Elien, Carl Ellison, Matt Fredette, Alexander Morcos, and Ronald L. Rivest. Certificate chain discovery in SPKI/SDSI. Journal of Computer Security, 9(4):285-322, 2001.
5. William F. Dowling and Jean H. Gallier. Linear-time algorithms for testing the satisfiability of propositional horn formulae. Journal of Logic Programming, 1(3):267-284, 1984.
6. Carl Ellison, Bill Frantz, Butler Lampson, Ron Rivest, Brian Thomas, and Tatu Ylonen. SPKI certificate theory. IETF RFC 2693, September 1999.
7. Michael R. Garey and David J. Johnson. Computers And Intractability: A Guide to the Theory of NP-Completeness. W.H. Freeman and Company, 1979.
8. Joseph Halpern and Ron van der Meyden. A logic for SDSI's linked local name spaces. Journal of Computer Security, 9(1-2):47-74, 2001.
9. Michael A. Harrison, Walter L. Ruzzo, and Jeffrey D. Ullman. Protection in operating systems. Communications of the ACM, 19(8):461-471, August 1976.
10. Somesh Jha and Thomas Reps. Analysis of SPKI/SDSI certificates using model checking. In Proceedings of the 15th IEEE Computer Security Foundations Workshop, pages 129-144. IEEE Computer Society Press, June 2002.
11. Butler W. Lampson. Protection. In Proceedings of the 5th Princeton Conference on Information Sciences and Systems, 1971.
12. Reprinted in ACM Operating Systems Review, 8(1):18-24, Jan 1974.
13. Ninghui Li. Local names in SPKI/SDSI. In Proceedings of the 13th IEEE Computer Security Foundations Workshop, pages 2-15. IEEE Computer Society Press, July 2000.
14. Ninghui Li and John C. Mitchell. Datalog with constraints: A foundation for trust management languages. In Proceedings of the Fifth International Symposium on Practical Aspects of Declarative Languages (PADL 2003), pages 58-73. Springer, January 2003.
15. Ninghui Li and John C. Mitchell. RT: A role-based trust-management framework. In The Third DARPA Information Survivability Conference and Exposition (DISCEX III), April 2003.
16. Ninghui Li, John C. Mitchell, and William H. Winsborough. Design of a role-based trust management framework. In Proceedings of the 2002 IEEE Symposium on Security and Privacy, pages 114-130. IEEE Computer Society Press, May 2002.
17. Ninghui Li, William H. Winsborough, and John C. Mitchell. Distributed credential chain discovery in trust management. Journal of Computer Security, 11(1):35-86, February 2003.
18. Richard J. Lipton and Lawrence Snyder. A linear time algorithm for deciding subject security. Journal of ACM, 24(3):455-464, 1977.
19. John W. Lloyd. Foundations of Logic Programming, Second Edition. Springer, 1987.
20. Ravi S. Sandhu. The Schematic Protection Model: Its definition and analysis for acyclic attenuating systems. Journal of ACM, 35(2):404-432, 1988.
21. Ravi S. Sandhu. The typed access matrix model. In Proceedings of the 1992 IEEE Symposium on Security and Privacy, pages 122-136. IEEE Computer Society Press, May 1992.