Integrity constraints in trust management

Authors:
Sandro Etalle;William H. Winsborough
Affiliations:
University of Twente;George Mason University
Venue:
Proceedings of the tenth ACM symposium on Access control models and technologies
Year:
2005

Citing 12
Cited 5

Role-Based Access Control Models

Computer
Integrity constraints: semantics and applications

Logics for databases and information systems
Policy-directed certificate retrieval

Software—Practice & Experience
Certificate chain discovery in SPKI?SDSI

Journal of Computer Security
Delegation logic: A logic-based approach to distributed authorization

ACM Transactions on Information and System Security (TISSEC)
DATALOG with Constraints: A Foundation for Trust Management Languages

PADL '03 Proceedings of the 5th International Symposium on Practical Aspects of Declarative Languages
Distributed credential chain discovery in trust management

Journal of Computer Security
Design of a Role-Based Trust-Management Framework

SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy
Decentralized Trust Management

SP '96 Proceedings of the 1996 IEEE Symposium on Security and Privacy
Understanding Trust Management Systems

SP '01 Proceedings of the 2001 IEEE Symposium on Security and Privacy
SD3: A Trust Management System with Certified Evaluation

SP '01 Proceedings of the 2001 IEEE Symposium on Security and Privacy
Beyond proof-of-compliance: security analysis in trust management

Journal of the ACM (JACM)

ATM: an automatic trust monitoring algorithm for service software

Proceedings of the 2009 ACM symposium on Applied Computing
Know What You Trust

Formal Aspects in Security and Trust
Maintaining control while delegating trust: Integrity constraints in trust management

ACM Transactions on Information and System Security (TISSEC)
Core TuLiP logic programming for trust management

ICLP'07 Proceedings of the 23rd international conference on Logic programming
A new monitor model for enhancing trust-based systems

ATC'10 Proceedings of the 7th international conference on Autonomic and trusted computing

Quantified Score

Hi-index	0.01

Visualization

Abstract

We introduce the use, monitoring, and enforcement of integrity constraints in trust management-style authorization systems. We consider what portions of the policy state must be monitored to detect violations of integrity constraints. Then we address the fact that not all participants in a trust management system can be trusted to assist in such monitoring, and show how many integrity constraints can be monitored in a conservative manner so that trusted participants detect and report if the system enters a policy state from which evolution in unmonitored portions of the policy could lead to a constraint violation.