TBA: A hybrid of logic and extensional access control systems

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 7140 LNCS, Issue , 2012, Pages 198-213

  Hinrichs, Timothy L ^a   Garrison III, William C ^b   Lee, Adam J ^b   Saunders, Skip ^c   Mitchell, John C ^d  

^a UNIVERSITY OF CHICAGO   (United States)

^b UNIVERSITY OF PITTSBURGH   (United States)

^c MITRE CORPORATION   (United States)

^d STANFORD UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ACCESS CONTROL MODELS; ACCESS CONTROL POLICIES; AUTHORIZATION POLICY; DAY-TO-DAY OPERATIONS; EASE-OF-USE; HYBRID APPROACH; LOGICAL LANGUAGE; LOGICAL SYSTEM; TAG-BASED;

DATA STRUCTURES; METADATA;

ACCESS CONTROL;

EID: 84863898631     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-642-29420-4_13     Document Type: Conference Paper

References (20)

1. Becker, M.Y., Fournet, C.Y., Gordon, A.D.: SecPAL: Design and semantics of a decentralized authorization language. JCS (2009)
2. Bertino, E., Catania, B., Ferrari, E., Perlasca, P.: A logical framework for reasoning about access control models. ACM TISSEC 6(1), 71-127 (2003)
3. Bertino, E., Ferrari, E., Buccafurri, F., Rullo, P.: A logical framework for reasoning on data access control policies. In: IEEE CSFW(1999)
4. Bertino, E., Jajodia, S., Samarati, P.: A flexible authorization mechanism for relational data management systems. ACM TISSEC 17(2), 101-140 (1999)
5. Blaze, M., Feigenbaum, J., Lacy, J.: Decentralized trust management. In: Proceedings of the IEEE Symposium on Security and Privacy, pp. 164-173 (1996)
6. Bonatti, P.A., di Vimercati, S.D., Samarati, P.: A modular approach to composing access control policies. In: ACM CCS, pp. 164-173 (2000)
7. Bowers, K.D., Bauer, L., Garg, D., Pfenning, F., Reiter, M.K.: Consumable credentials in logic-based access-control systems. In: NDSS, pp. 143-157 (2007)
8. Bruns, G., Huth, M.: Access-control policies via belnap logic: Effective and efficient composition and analysis. In: IEEE CSF (2008)
9. Cholvy, L., Cuppens, F.: Analyzing consistency of security policies. In: IEEE S&P (1997)
10. Crampton, J.: Understanding and developing role-based administrative models. In: ACM CCS, pp. 158-167 (2005)
11. Cuppens, F., Cholvy, L., Saurel, C., Carrere, J.: Merging security policies: analysis of a practical example. In: IEEE CSFW(1998)
12. Halpern, J.Y.,Weissman, V.: Using first-order logic to reason about policies. In: IEEE CSFW (2003)
13. Hinrichs, T., Garrison, W., Lee, A., Saunders, S., Mitchell, J.: TBA: A hybrid of logic and extensional access control systems (Extended version). Technical Report TR-11-182, University of Pittsburgh (October 2011)
14. Li, N., Mitchell, J.C., Winsborough, W.H.: Design of a role-based trust-management framework. In: IEEE S&P (2002)
15. Razavi, M.N., Iverson, L.: Supporting selective information sharing with people-tagging. In: CHI Extended Abstracts, pp. 3423-3428 (2008)
16. Ribeiro, C., Zuquete, A., Ferreira, P., Guedes, P.: SPL: An access control language for security policies with complex constraints. In: NDSS (2001)
17. Tripunitara, M.V., Li, N.: A theory for comparing the expressive power of access control models. JCS 15(2), 231-272 (2007)
18. U.S. Air Force Scientific Advisory Board. Networking to enable coalition operations. Technical report, MITRE Corporation (2004)
19. Wang, Q., Jin, H., Li, N.: Usable Access Control in Collaborative Environments: Authorization Based on People-Tagging. In: Backes, M., Ning, P. (eds.) ESORICS 2009. LNCS, vol. 5789, pp. 268-284. Springer, Heidelberg (2009)
20. Wijesekera, D., Jajodia, S.: Policy algebras for access control - the predicate case. In: ACM CCS, pp. 171-180 (2001)