Do As I SaY! Programmatic Access Control with Explicit Identities

13 years 11 months ago

Download reed.cs.depaul.edu

We address the programmatic realization of the access control model of security in distributed systems. Our aim is e the gap between abstract/declarative policies and their concrete/operational implementations. We present a programming formalism (which extends the asynchronous pi-calculus with explicit principals) and a speciﬁcation logic (which extends Datalog with primitives from authorization logic). We provide two kinds of static analysis methods to tie implementation to speciﬁcation. Type checking determines that a program is a sound implementation of policy; i.e., that all granted accesses are safe in the face of arbitrary opponents. Model checking determines a degree of completeness; i.e., that accesses permitted by the policy are actually granted in the implementation.

Andrew Cirillo, Radha Jagadeesan, Corin Pitcher, J

Real-time Traffic

Access Control Model | Checking Determines | CSFW 2007 | Security Privacy | Type Checking Determines |

claim paper

Post Info
More Details (n/a)

Added	02 Jun 2010
Updated	02 Jun 2010
Type	Conference
Year	2007
Where	CSFW
Authors	Andrew Cirillo, Radha Jagadeesan, Corin Pitcher, James Riely

Comments (0)

Sciweavers

Do As I SaY! Programmatic Access Control with Explicit Identities

Access Control Model | Checking Determines | CSFW 2007 | Security Privacy | Type Checking Determines |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers