A calculus for access control in distributed systems
ACM Transactions on Programming Languages and Systems (TOPLAS)
PRUNES: an efficient and complete strategy for automated trust negotiation over the Internet
Proceedings of the 7th ACM conference on Computer and communications security
Access Control: Policies, Models, and Mechanisms
FOSAD '00 Revised versions of lectures given during the IFIP WG 1.7 International School on Foundations of Security Analysis and Design on Foundations of Security Analysis and Design: Tutorial Lectures
Authorization and Attribute Certificates for Widely Distributed Access Control
WETICE '98 Proceedings of the 7th Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises
Decentralized Trust Management
SP '96 Proceedings of the 1996 IEEE Symposium on Security and Privacy
A Logical Language for Expressing Authorizations
SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy
Hi-index | 0.00 |
The paper contains the proposal of the access control policy description language to support security and management of distributed systems. This policy language is based on a declarative, object-oriented Ponder language presented in Damianou [DDL00]. The language is flexible, expressive and extensible to cover the wide range of requirements implied by the current distributed systems paradigms. The additional extensions included into Ponder allow us to implement a certificate-based access control system, which formally has been specified by Kurkowski, et. al. [KUP02].