The next 700 access control models or a unifying meta-model?

Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Volumn , Issue , 2009, Pages 187-196

  Barker, Steve ^a  

^a KING'S COLLEGE LONDON   (United Kingdom)

Author keywords

Access control models; Access control policies

Indexed keywords

ACCESS CONTROL MODELS; ACCESS CONTROL POLICIES; META MODEL; MULTIPLE ACCESS CONTROL;

SECURITY SYSTEMS;

ACCESS CONTROL;

EID: 70450250101     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1542207.1542238     Document Type: Conference Paper

References (23)

1. ANSI. RBAC, 2004. INCITS 359-2004.
2. C. Baral and M. Gelfond. Logic programming and knowledge representation. JLP, 19/20:73-148, 1994.
3. S. Barker, M. J. Sergot, and D. Wijesekera. Status-based access control. ACM Trans. Inf. Syst. Secur., 12(1), 2008.
4. S. Barker and P. Stuckey. Flexible access control policy specification with constraint logic programming. ACM Trans. on Information and System Security, 6(4):501-546, 2003.
5. M. Y. Becker, C. Fournet, and A. D. Gordon. Design and semantics of a decentralized authorization language. In CSF, pages 3-15, 2007.
6. D. E. Bell and L. J. LaPadula. Secure computer system: Unified exposition and multics interpretation. MITRE-2997, 1976.
7. E. Bertino, C. Bettini, E. Ferrari, and P. Samarati. An access control model supporting periodicity constraints and temporal reasoning. ACM TODS, 23(3):231-285, 1998.
8. H. Boley, S. Tabet, and G. Wagner. Design rationale of ruleml: A markup language for semantic web rules. In SWWS 2001, pages 381-401, 2001.
9. L. Cavedon and J. Lloyd. A completeness theorem for SLDNF resolution. JLP, 7(3):177-192, 1989.
10. K. Clark. Negation as failure. In H. Gallaire and J. Minker, editors, Logic and Databases, pages 293-322. Plenum, 1978.
11. D. E. Clarke, J.-E. Elien, C. M. Ellison, M. Fredette, A. Morcos, and R. L. Rivest. Certificate chain discovery in SPKI/SDSI. J. Computer Security, 9(4):285-322, 2001.
12. D. F. Ferraiolo and V. Atluri. A meta model for access control: why is it needed and is it even possible to achieve? In SACMAT'08, pages 153-154, 2008.
13. D. F. Ferraiolo, R. S. Sandhu, S. I. Gavrila, D. R. Kuhn, and R. Chandramouli. Proposed nist standard for role-based access control. ACM TISSEC, 4(3):224-274, 2001.
14. S. Genaim and M. Codish. Inferring termination conditions for logic programs using backwards analysis. volume 2250 of LNCS, pages 685-694. Springer, 2001.
15. S. Jajodia, P. Samarati, M. Sapino, and V. Subrahmaninan. Flexible support for multiple access control policies. ACM TODS, 26(2):214-260, 2001.
16. J. Joshi, E. Bertino, U. Latif, and A. Ghafoor. A generalized temporal role-based access control model. IEEE Trans. Knowl. Data Eng., 17(1):4-23, 2005.
17. P. J. Landin. The next 700 programming languages. Commun. ACM, 9(3):157-166, 1966.
18. N. Li, J. C. Mitchell, and W. H. Winsborough. Design of a role-based trust-management framework. In IEEE Symposium on Security and Privacy, pages 114-130, 2002.
19. C.-J. Liau. Belief, information acquisition, and trust in multi-agent systems - a modal logic formulation. Artif. Intell., 149(1):31-60, 2003.
20. OASIS. eXtensible Access Control Markup language (XACML), 2003. http://www.oasis-open.org/xacml/docs/.
21. R. S. Sandhu and Q. Munawer. How to do discretionary access control using roles. In ACM Workshop on Role-Based Access Control, pages 47-54, 1998.
22. D. J. Weitzner, J. Hendler, T. Berners-Lee, and D. Connolly. Creating a policy-aware web: Discretionary, rule-based access for the world wide web. Web and Information Security, 2006.
23. The XSB System Version 2.7.1, Programmer's Manual, 2005.