SecPAL: Design and semantics of a decentralized authorization language

Journal of Computer Security

Volumn 18, Issue 4, 2010, Pages 619-665

  Becker, Moritz Y ^a   Fournet, Cédric ^a   Gordon, Andrew D ^a  

^a MICROSOFT RESEARCH   (United Kingdom)

Author keywords

access control; Authorization language; policy; trust management

Indexed keywords

AUTHORIZATION LANGUAGE; CONSTRAINT LOGIC PROGRAMMING; DATALOG; DECENTRALIZED AUTHORIZATION; DEDUCTION RULE; DELEGATORS; EXECUTION STRATEGIES; FLEXIBLE SUPPORTS; NATURAL LANGUAGES; RECURSIONS; TRUST MANAGEMENT;

COMPUTER PROGRAMMING LANGUAGES; LINGUISTICS; LOGIC PROGRAMMING; SECURITY SYSTEMS; SEMANTICS; SYNTACTICS; XML;

ACCESS CONTROL;

EID: 77954754889     PISSN: 0926227X     EISSN: None     Source Type: Journal    
DOI: 10.3233/JCS-2009-0364     Document Type: Conference Paper

References (66)

1. M. Abadi, On SDSI's linked local name spaces, Journal of Computer Security 6(1,2) (1998), 3-22.
2. M. Abadi, M. Burrows, B. Lampson and G. Plotkin, A calculus for access control in distributed systems, ACM Transactions on Programming Languages and Systems 15(4) (1993), 706-734.
3. S. Abiteboul, R. Hull and V. Vianu, Foundations of Databases, Addison-Wesley, Reading, MA, 1995.
4. O. Bandmann, B.S. Firozabadi and M. Dam, Constrained delegation, in: IEEE Symposium on Security and Privacy, 2002, pp. 131-140.
5. S. Barker and P.J. Stuckey, Flexible access control policy specification with constraint logic programming, ACM Transactions on Information and System Security 6(4) (2003), 501-546.
6. M.Y. Becker, Cassandra: Flexible trust management and its application to electronic health records (Ph.D. thesis), Technical Report UCAM-CL-TR-648, Computer Laboratory, University of Cambridge, 2005; available at: www.cl.cam.ac.uk/TechReports/UCAM-CL-TR-648.html.
7. M.Y. Becker, Information governance in NHS's NPfIT: A case for policy specification, International Journal of Medical Informatics 76(5,6) (2007), 432-437.
8. M.Y. Becker, C. Fournet and A.D. Gordon, SecPAL: Design and semantics of a decentralized authorization language, Technical report, Microsoft Research, 2006; available at: research.microsoft. com/research/pubs/view.aspx?tr-id=1166.
9. M.Y. Becker, C. Fournet and A.D. Gordon, Design and semantics of a decentralized authorization language, in: IEEE Computer Security Foundations Symposium, 2007, pp. 3-15.
10. M.Y. Becker and S. Nanz, A logic for state-modifying authorization policies, in: 12th European Symposium on Research in Computer Security (ESORICS), 2007, pp. 203-218.
11. M.Y. Becker and S. Nanz, The role of abduction in declarative authorization policies, in: 10th International Symposium on Practical Aspects of Declarative Languages (PADL), 2008.
12. M.Y. Becker and P. Sewell, Cassandra: Distributed access control policies with tunable expressiveness, in: IEEE 5th International Workshop on Policies for Distributed Systems and Networks, 2004, pp. 159-168.
13. M.Y. Becker and P. Sewell, Cassandra: Flexible trust management, applied to electronic health records, in: IEEE Computer Security Foundations Workshop, 2004, pp. 139-154.
14. D.E. Bell and L.J. LaPadula, Secure computer systems: Unified exposition and Multics interpretation, Technical report, The MITRE Corporation, July 1975.
15. E. Bertino, C. Bettini, E. Ferrari and P. Samarati, An access control model supporting periodicity constraints and temporal reasoning, ACM Trans. Database Syst. 23(3) (1998), 231-285.
16. E. Bertino, C. Bettini and P. Samarati, A temporal authorization model, in: CCS '94: Proceedings of the 2nd ACM Conference on Computer and Communications Security, New York, NY, USA, 1994, ACM Press, 1994, pp. 126-135.
17. E. Bertino, B. Catania, E. Ferrari and P. Perlasca, A logical framework for reasoning about access controlmodels, in: SACMAT '01: Proceedings of the 6th ACMSymposium on Access ControlModels and Technologies, New York, NY, USA, 2001, ACM Press, 2001, pp. 41-52.
18. M. Blaze, J. Feigenbaum and A.D. Keromytis, The role of trust management in distributed systems security, in: Secure Internet Programming, 1999, pp. 185-210.
19. M. Blaze, J. Feigenbaum and J. Lacy, Decentralized trust management, in: IEEE Symposium on Security and Privacy, 1996, pp. 164-173.
20. S. Ceri, G. Gottlob and L. Tanca, What you always wanted to know about Datalog (and never dared to ask), IEEE Transactions on Knowledge and Data Engineering 1(1) (1989), 146-166.
21. D. Chadwick, Authorisation in grid computing, Information Security Technical Report 10(1) (2005), 33-40.
22. D.W. Chadwick and A. Otenko, The PERMIS X.509 role based privilege management infrastructure, Future Generation Computer Systems 19(2) (2003), 277-289.
23. W. Chen and D. S. Warren, Tabled evaluation with delaying for general logic programs, Journal of the ACM 43(1) (1996), 20-74.
24. ContentGuard, eXtensible rights Markup Language (XrML) 2.0 specification part II: Core schema; available at: www.xrml.org, 2001.
25. E. Dantsin, T. Eiter, G. Gottlob and A. Voronkov, Complexity and expressive power of logic programming, in: CCC '97: Proceedings of the 12th Annual IEEE Conference on Computational Complexity, Washington, DC, USA, 1997, IEEE Computer Society, 1997. p. 82.
26. J. DeTreville, Binder, a logic-based security language, in: IEEE Symposium on Security and Privacy, 2002, pp. 105-113.
27. S.D.C. di Vimercati, P. Samarati and S. Jajodia, Policies, models and languages for access control, in: Databases in Networked Information Systems, Lecture Notes in Computer Science, Vol.3433, 2005, pp. 225-237.
28. S.W. Dietrich, Extension tables: Memo relations in logic programming, in: Symposium on Logic Programming, 1987, pp. 264-272.
29. B. Dillaway, A unified approach to trust, delegation and authorization in large-scale grids, Whitepaper, Microsoft Corporation, September 2006; available at: research.microsoft.com/projects/ SecPAL/.
30. B. Dillaway and J. Hogg, Security Policy Assertion Language (SecPAL) specification, version 1.0, February 2007; available at: research.microsoft.com/ projects/SecPAL/.
31. C.M. Ellison, B. Frantz, B. Lampson, R. Rivest, B. Thomas and T. Ylonen, SPKI certificate theory, RFC 2693, September 1999; available at: www.ietf.org/rfc/rfc2693.txt.
32. M. Evered and S. Bögeholz, A case study in access control requirements for a health information system, in: CRPIT '04: Proceedings of the 2nd Workshop on Australasian Information Security, Data Mining and Web Intelligence and Software Internationalisation, 2004, pp. 53-61.
33. I.T. Foster, C. Kesselman, G. Tsudik and S. Tuecke, A security architecture for computational grids, in: ACM Conference on Computer and Communications Security, 1998, pp. 83-92.
34. D. Garg andM. Abadi, A modal deconstruction of access control logics, in: Foundations of Software Science and Computation Structures (FOSSACS'08), 2008, pp. 216-230.
35. L. Giuri and P. Iglio, Role templates for content-based access control, in: Proceedings of the 2nd ACM Workshop on Role-Based Access Control (RBAC-97), 1997, pp. 153-159.
36. Y. Gurevich and I. Neeman, DKAL: Distributed-knowledge authorization language, Technical Report MSR-TR-2007-2116, Microsoft Research, 2007.
37. J.Y. Halpern and V. Weissman, Using first-order logic to reason about policies, in: IEEE Computer Security Foundations Workshop, 2003, pp. 187-201.
38. J.Y. Halpern and V. Weissman, A formal foundation for XrML, in: CSFW '04: Proceedings of the 17th IEEE Computer Security Foundations Workshop (CSFW'04), Washington, DC, USA, 2004, IEEE Computer Society, 2004, p. 251.
39. P. Humenn, The formal semantics of XACML (draft), Syracuse University, 2003; available at: lists.oasis-open.org/archives/xacml/200310/ pdf00000.pdf.
40. M. Humphrey, S.-M. Park, J. Feng, N. Beekwilder, G. Wasson, J. Hogg, B. LaMacchia and B. Dillaway, Fine-grained access control for GridFTP using SecPAL, in: 8th IEEE/ACM International Conference on Grid Computing, 2007.
41. J. Jaffar and M.J. Maher, Constraint logic programming: A survey, Journal of Logic Programming 19(20) (1994), 503-581.
42. S. Jajodia, P. Samarati, M.L. Sapino and V.S. Subrahmanian, Flexible support for multiple access control policies, ACM Trans. Database Syst. 26(2) (2001), 214-260.
43. T. Jim, SD3: A trust management system with certified evaluation, in: Proceedings of the 2001 IEEE Symposium on Security and Privacy, 2001, pp. 106-115.
44. K. Knight, Unification: a multidisciplinary survey, ACM Computing Surveys (CSUR) 21(1) (1989), 93-124.
45. B. Lampson, M. Abadi, M. Burrows and E. Wobber, Authentication in distributed systems: theory and practice, ACM Trans. Computer Syst. 10(4) (1992), 265-310.
46. N. Li, B. Grosof and J. Feigenbaum, A practically implementable and tractable delegation logic, in: IEEE Symposium on Security and Privacy, 2000, pp. 27-42.
47. N. Li and J.Mitchell, Understanding SPKI/SDSI using first-order logic, in: Computer Security Foundations Workshop, 2003.
48. N. Li and J.C. Mitchell, Datalog with constraints: A foundation for trust management languages, in: Proc. PADL, 2003, pp. 58-73.
49. N. Li, J.C. Mitchell and W.H. Winsborough, Design of a role-based trust management framework, in: Proceedings of the 2002 IEEE Symposium on Security and Privacy, 2002, pp. 114-130.
50. E.C. Lupu and M. Sloman, Reconciling role-based management and role-based access control, in: ACM Workshop on Role-based Access Control, 1997, pp. 135-141.
51. A. Martelli and U. Montanari, An efficient unification algorithm, ACM Transactions on Programming Languages and Systems 4(2) (1982), 258-282.
52. Microsoft Corporation, SecPAL Research Release for Microsoft .NET, 2007; available at: research. microsoft.com/projects/SecPAL/.
53. OASIS, Security Assertion Markup Language (SAML); available at: www.oasis-open.org/ committees/security.
54. OASIS, eXtensible Access Control Markup Language (XACML) Version 2.0 core specification, 2005; available at: www.oasis-open.org/committees/xacml/.
55. M.S. Paterson and M.N. Wegman, Linear unification, in: STOC '76: Proceedings of the 8th Annual ACM Symposium on Theory of Computing, New York, NY, USA, 1976, ACM Press, 1976, pp. 181- 186.
56. P. Revesz, Introduction to Constraint Databases, Springer-Verlag, New York, USA, 2002.
57. P. Z. Revesz, Constraint databases: A survey, in: Semantics in Databases, Lecture Notes in Computer Science, Vol.1358, Springer, 1995, pp. 209-246.
58. R.L. Rivest, Can we eliminate certificate revocations lists?, in: Financial Cryptography, 1998, pp. 178-183.
59. R.L. Rivest and B. Lampson, SDSI - A simple distributed security infrastructure, August 1996; available at: theory.lcs.mit.edu/ rivest/sdsi10.ps.
60. H. Tamaki and T. Sato, OLD resolution with tabulation, in: Proceedings on 3rd International Conference on Logic Programming, 1986, pp. 84-98.
61. M. Thompson, A. Essiari and S. Mudumbai, Certificate-based authorization policy in a PKI environment, ACM Transactions on Information and System Security 6(4) (2003), 566-588.
62. D. Toman, Memoing evaluation for constraint extensions of Datalog, Constraints 2(3,4) (1997), 337-359.
63. J.D. Ullman, Assigning an appropriate meaning to database logic with negation, in: Computers as Our Better Partners, H. Yamada, Y. Kambayashi and S. Ohta, eds, World Scientific, 1994, pp. 216- 225.
64. L. Wang, D. Wijesekera and S. Jajodia, A logic-based framework for attribute based access control, in: FMSE '04: Proceedings of the 2004 ACMWorkshop on Formal Methods in Security Engineering, 2004, pp. 45-55.
65. V. Welch, I. Foster, T. Scavo, F. Siebenlist and C. Catlett, Scaling TeraGrid access: A roadmap for attribute-based authorization for a large cyberinfrastructure (draft August 24) 2006; available at: gridshib.globus.org/ docs/tg-paper/TG-Attribute-Authz-Roadmap-draft-aug24.pdf.
66. V. Welch, F. Siebenlist, I. Foster, J. Bresnahan, K. Czajkowski, J. Gawor, C. Kesselman, S. Meder, L. Pearlman and S. Tuecke, Security for grid services, in: HPDC '03: Proceedings of the 12th IEEE International Symposium on High Performance Distributed Computing (HPDC'03), 2003, p. 48.