E pluribus unum: deduction, abduction and induction, the reasoning services for access control in autonomic communication

Authors:
Hristo Koshutanski;Fabio Massacci
Affiliations:
Dip. di Informatica e Telecomunicazioni, Univ. di Trento, Povo di Trento, Italy;Dip. di Informatica e Telecomunicazioni, Univ. di Trento, Povo di Trento, Italy
Venue:
WAC'04 Proceedings of the First international IFIP conference on Autonomic Communication
Year:
2004

Citing 13
Cited 1

Logic programming

Handbook of theoretical computer science (vol. B)
An overview of workflow management: from process modeling to workflow automation infrastructure

Distributed and Parallel Databases - Special issue on software support for work flow management
The specification and enforcement of authorization constraints in workflow management systems

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
A logical framework for reasoning about access control models

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
Access control mechanisms for inter-organizational workflow

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
A Chinese wall security model for decentralized workflow systems

CCS '01 Proceedings of the 8th ACM conference on Computer and Communications Security
ACM SIGAda Ada Letters

ACM SIGAda Ada Letters
A uniform framework for regulating service access and information release on the web

Journal of Computer Security
Delegation logic: A logic-based approach to distributed authorization

ACM Transactions on Information and System Security (TISSEC)
Policy Specification for Programmable Networks

IWAN '99 Proceedings of the First International Working Conference on Active Networks
The Ponder Policy Specification Language

POLICY '01 Proceedings of the International Workshop on Policies for Distributed Systems and Networks
Understanding Trust Management Systems

SP '01 Proceedings of the 2001 IEEE Symposium on Security and Privacy
Prediction is deduction but explanation is abduction

IJCAI'89 Proceedings of the 11th international joint conference on Artificial intelligence - Volume 2

A survey of autonomic communications

ACM Transactions on Autonomous and Adaptive Systems (TAAS)

Quantified Score

Hi-index	0.00

Visualization

Abstract

Autonomic Communication is a new paradigm for dynamic network integration. An Autonomic Network crosses organizational boundaries and is provided by entities that see each other just as business partners. Policy-base network anagement already requires a paradigm shift in the access control mechanism (from identity-based access control to trust management and negotiation), but this is not enough for cross organizational autonomic communication. For many services no partner may guess a priori what credentials will be sent by clients and clients may not know a priori which credentials are required for completing a service requiring the orchestration of many different autonomic nodes. We propose a logical framework and a Web-Service based implementation for reasoning about access control for Autonomic Communication. Our model is based on interaction and exchange of requests for supplying or declining missing credentials. We identify the formal reasoning services that characterise the problem and sketch their implementation.