Certificate-based access control policies description language

Authors:
Jerzy Pejaś
Affiliations:
Faculty of Computer Science & Information Systems, Department of Programming Techniques, Technical University of Szczecin, 49, Zolnierska st., 71-210 Szczecin, Poland
Venue:
Artificial intelligence and security in computing systems
Year:
2003

Citing 6
Cited 0

A calculus for access control in distributed systems

ACM Transactions on Programming Languages and Systems (TOPLAS)
PRUNES: an efficient and complete strategy for automated trust negotiation over the Internet

Proceedings of the 7th ACM conference on Computer and communications security
Access Control: Policies, Models, and Mechanisms

FOSAD '00 Revised versions of lectures given during the IFIP WG 1.7 International School on Foundations of Security Analysis and Design on Foundations of Security Analysis and Design: Tutorial Lectures
Authorization and Attribute Certificates for Widely Distributed Access Control

WETICE '98 Proceedings of the 7th Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises
Decentralized Trust Management

SP '96 Proceedings of the 1996 IEEE Symposium on Security and Privacy
A Logical Language for Expressing Authorizations

SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

The paper contains the proposal of the access control policy description language to support security and management of distributed systems. This policy language is based on a declarative, object-oriented Ponder language presented in Damianou [DDL00]. The language is flexible, expressive and extensible to cover the wide range of requirements implied by the current distributed systems paradigms. The additional extensions included into Ponder allow us to implement a certificate-based access control system, which formally has been specified by Kurkowski, et. al. [KUP02].