Relating declarative semantics and usability in access control

  • Authors:
  • Vivek Krishnan;Mahesh V. Tripunitara;Kinson Chik;Tony Bergstrom

  • Affiliations:
  • University of Waterloo, Waterloo, ON, Canada;University of Waterloo, Waterloo, ON, Canada;IBM Toronto, ON, Canada;Desire2Learn Ltd., Waterloo, ON, Canada

  • Venue:
  • Proceedings of the Eighth Symposium on Usable Privacy and Security
  • Year:
  • 2012

Quantified Score

Hi-index 0.00

Visualization

Abstract

Usability is widely recognized as a problem in the context of the administration of access control systems. We seek to relate the notion of declarative semantics, a recurring theme in research in access control, with usability. We adopt the concrete context of POSIX ACLs and the traditional interface for it that comprises two utilities getfacl and setfacl whose natural semantics is operational. We have designed and implemented an alternate interface that we call askfacl whose natural semantics is declarative. We discuss our design of askfacl. We then discuss a human-subject usability study that we have designed and conducted that compares the two interfaces. Our results measurably demonstrate the goodness of declarative semantics in access control.