An algebraic-functional framework for distributed access control

Proceedings 2008 3rd International Conference on Risks and Security of Internet and Systems, CRiSIS 2008

Volumn , Issue , 2008, Pages 1-8

  Bertolissi, Clara ^a   Fernández, Maribel ^b  

^a AIX MARSEILLE UNIVERSITY   (France)

^b KING'S COLLEGE LONDON   (United Kingdom)

Author keywords

[No Author keywords available]

Indexed keywords

INTERNET; MODEL CHECKING; SECURITY SYSTEMS;

ACCESS CONTROL MODELS; DYNAMIC ENVIRONMENTS;

ACCESS CONTROL;

EID: 63249099981     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CRISIS.2008.4757458     Document Type: Conference Paper

References (41)

1. M. Abadi, M. Burrows, B. Lampson and G. Plotkin. A calculus for access control in distributed systems. ACM TOPLAS, 15(4):706-734, 1993.
2. T. Abbes, A. Bouhoula, and M. Rusinowitch. Protocol analysis in intrusion detection using decision tree. In Proc. ITCC'04, pages 404- 408, 2004.
3. J. Abendroth and C. Jensen. A unified security mechanism for networked applications. In SAC'03, pages 351-357, 2003.
4. F. Baader and T. Nipkow. Term rewriting and all that. Cambridge University Press, Great Britain, 1998.
5. J. Bacon, K. Moody, and W. Yao. A model of OASIS RBAC and its support for active security. TISSEC, 5(4):492-540, 2002.
6. S. van Bakel and M. Fernández. Normalization results for typeable rewrite systems. Inf. and Comp., 133(2):73-116, 1997.
7. C. Baral and M. Gelfond. Logic programming and knowledge representation. JLP, 19/20:73-148, 1994.
8. F. Barbanera and M. Fernández. Intersection type assignment systems with higher-order algebraic rewriting. TCS, 170:173-207, 1996.
9. H. P. Barendregt. The Lambda Calculus: Its Syntax and Semantics. North-Holland, revised edition, 1984.
10. S. Barker and M. Fernández. Term rewriting for access control. In Proc. of DBSec'06, volume 4127 of LNCS, pages 179-193. Springer, 2006.
11. S. Barker and P. Stuckey. Flexible access control policy specification with constraint logic programming. ACM Trans. Inf. Syst. Secur., 6(4):501-546, 2003.
12. S. Barker. Action-status access control. In Proceedings of SACMAT'07, pages 195-204. ACM, 2007.
13. G. Barthe, G. Dufay, M. Huisman, and S. Melo de Sousa. Jakarta: a toolset to reason about the JavaCard platform. In Proc. of e-SMART'01, volume 2140 of LNCS. Springer-Verlag, 2002.
14. M. Y. Becker C. Fournet and A. D. Gordon. Design and semantics of a decentralized authorization language. In Proc. of CSF'07, pages 3-15, IEEE Comp. Society, 2007.
15. M. Becker and P. Sewell. Cassandra: Distributed access control policies with tunable expressiveness. In POLICY 2004, pages 159-168, 2004.
16. E. Bertino, B. Catania, and G. Zarri. Intelligent Database Systems. Addison Wesley, 2001.
17. C. Bertolissi and M. Fernández. A Rewriting Framework for the Composition of Access Control Policies. In Proc. of PPDP 2008, ACM Press.
18. C. Bertolissi, M. Fernández, and S. Barker. Dynamic event-based access control as term rewriting. In Proc. of DBSEC'07), volume 4602 of LNCS. Springer-Verlag, 2007.
19. V. Breazu-Tannen and Jean Gallier. Polymorphic rewriting conserves algebraic confluence. Information and Computation, 82:3-28, 1992.
20. M. Clavel, F. Durán, S. Eker, P. Lincoln, N. Martí-Oliet, J. Meseguer, and C. Talcott. The Maude 2.0 system. In Proc. of RTA'03, number 2706 in LNCS, pages 76-87. Springer-Verlag, 2003.
21. J. DeTreville. Binder, a logic-based security language. In Proc. IEEE Symposium on Security and Privacy, pages 105-113, 2002.
22. D. J. Dougherty, K. Fisler and S. Krishnamurthi. Specifying and reasoning about dynamic access-control policies. In Proc. of IJCAR'06, volume 4130 of LNCS, pages 632-646. Springer, 2006.
23. D. J. Dougherty, C. Kirchner, H. Kirchner, and A. Santana de Oliveira. Modular Access Control via Strategic Rewriting. In Proc. of ES- ORICS'07, LNCS, pages 578-593, 2007.
24. D. J. Dougherty. Adding algebraic rewriting to the untyped lambda calculus. In Proc. of RTA'91, LNCS 488, 1991.
25. R. Echahed and F. Prost. Security policy in a declarative style. In Proc. of PPDP'05. ACM Press, 2005.
26. M. Fernández and J.-P. Jouannaud. Modular termination of term rewriting systems revisited. In Proc. of ADT'94, number 906 in LNCS, 1995.
27. P. Hudak, J. Peterson, and J. Fasel. A gentle introduction to Haskell 98. http://www.haskell.org/tutorial, 1999.
28. S. Jajodia, P. Samarati, M. Sapino, and V.S. Subrahmaninan. Flexible support for multiple access control policies. ACM TODS, 26(2):214-260, 2001.
29. T. Jim. SD3: A trust management system with certified evaluation. In IEEE Symp. Security and Privacy, pages 106-115, 2001.
30. J.-P. Jouannaud and M. Okada. Executable higher-order algebraic specification languages. In Proc, of LICS'91, pages 350-361. IEEE Computer Society Press, 1991.
31. L. Kagal, T. Finin, and A. Johshi. A policy language for pervasive computing environment. In POLICY'03, pages 63-78, 2003.
32. J.-W. Klop, V. van Oostrom, and F. van Raamsdonk. Combinatory reduction systems, introduction and survey. TCS, 121:279-308, 1993.
33. OASIS. extensible access control markup language (xacml), 2003. http://www.oasis-open.org/xacml/docs/.
34. D. Sannella S. Kahrs and A. Tarlecki. The definition of Extended ML: A gentle introduction. TCS, 173(2):445-484, 1997.
35. R. Sandhu, E. Coyne, H. Feinstein, and C. Youman. Role-based access control models. IEEE Computer Society, 29(2):38-47, 1996.
36. A. Santana de Oliveira. Rewriting-based access control policies. In Proc. of SECRET'06, ENTCS, Elsevier, 2007.
37. A. Santana de Oliveira. Rewriting and modularity of security policies. PhD Thesis, University Henri Poincaré, Nancy, 2008.
38. TOM. A software environment for defining transformations in Java. http://tom.loria.fr/soft/release-2.6/manual-2.6
39. A. Uszok, M. Bradshaw, and R. Jeffers. KAoS semantic policy and domain services. In iTrust'04, pages 16-26, 2004.
40. D. Wijesekera and S. Jajodia. Policy algebras for access control the predicate case. In Proc, of CCS'02, ACM Press, pages 171-180, 2002. IEEE.
41. The XSB System, Version 3.1. A Logic Programming and Deductive Database system. http://xsb.sourceforge.net/