Access Control in a Core Calculus of Dependency

Authors:
Martín Abadi
Affiliations:
Computer Science Department, University of California, Santa Cruz and Microsoft Research, Silicon Valley
Venue:
Electronic Notes in Theoretical Computer Science (ENTCS)
Year:
2007

Citing 25
Cited 15

Building a secure computer system

Building a secure computer system
Notions of computation and monads

Information and Computation
Report on the programming language Haskell: a non-strict, purely functional language version 1.2

ACM SIGPLAN Notices - Haskell special issue
Authentication in distributed systems: theory and practice

ACM Transactions on Computer Systems (TOCS)
A calculus for access control in distributed systems

ACM Transactions on Programming Languages and Systems (TOPLAS)
Authentication in the Taos operating system

ACM Transactions on Computer Systems (TOCS) - Special issue on operating systems principles
Propositional lax logic

Information and Computation
The marriage of effects and monads

ICFP '98 Proceedings of the third ACM SIGPLAN international conference on Functional programming
A core calculus of dependency

Proceedings of the 26th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
JFlow: practical mostly-static information flow control

Proceedings of the 26th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Proof-carrying authentication

CCS '99 Proceedings of the 6th ACM conference on Computer and communications security
Information flow inference for free

ICFP '00 Proceedings of the fifth ACM SIGPLAN international conference on Functional programming
SAFKASI: a security mechanism for language-based systems

ACM Transactions on Software Engineering and Methodology (TOSEM)
Cryptography and data security

Cryptography and data security
Information flow inference for ML

ACM Transactions on Programming Languages and Systems (TOPLAS)
Delegation logic: A logic-based approach to distributed authorization

ACM Transactions on Information and System Security (TISSEC)
DATALOG with Constraints: A Foundation for Trust Management Languages

PADL '03 Proceedings of the 5th International Symposium on Practical Aspects of Declarative Languages
Logic in Access Control

LICS '03 Proceedings of the 18th Annual IEEE Symposium on Logic in Computer Science
Binder, a Logic-Based Security Language

SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy
SD3: A Trust Management System with Certified Evaluation

SP '01 Proceedings of the 2001 IEEE Symposium on Security and Privacy
Computer Security in the Real World

Computer
Translating dependency into parametricity

Proceedings of the ninth ACM SIGPLAN international conference on Functional programming
Distributed Proving in Access-Control Systems

SP '05 Proceedings of the 2005 IEEE Symposium on Security and Privacy
Non-Interference in Constructive Authorization Logic

CSFW '06 Proceedings of the 19th IEEE workshop on Computer Security Foundations
Access control in a core calculus of dependency

Proceedings of the eleventh ACM SIGPLAN international conference on Functional programming

Alpaca: extensible authorization for distributed services

Proceedings of the 14th ACM conference on Computer and communications security
AURA: a programming language for authorization and audit

Proceedings of the 13th ACM SIGPLAN international conference on Functional programming
Variations in Access Control Logic

DEON '08 Proceedings of the 9th international conference on Deontic Logic in Computer Science
Code-Carrying Authorization

ESORICS '08 Proceedings of the 13th European Symposium on Research in Computer Security: Computer Security
Encoding information flow in Aura

Proceedings of the ACM SIGPLAN Fourth Workshop on Programming Languages and Analysis for Security
Encoding information flow in AURA

ACM SIGPLAN Notices
A modal deconstruction of access control logics

FOSSACS'08/ETAPS'08 Proceedings of the Theory and practice of software, 11th international conference on Foundations of software science and computational structures
PCAL: language support for proof-carrying authorization systems

ESORICS'09 Proceedings of the 14th European conference on Research in computer security
Refinement types for secure implementations

ACM Transactions on Programming Languages and Systems (TOPLAS)
Nexus authorization logic (NAL): Design rationale and applications

ACM Transactions on Information and System Security (TISSEC)
Socially constructed trust for distributed authorization

ESORICS'11 Proceedings of the 16th European conference on Research in computer security
Stateful authorization logic: proof theory and a case study

STM'10 Proceedings of the 6th international conference on Security and trust management
Type-based dependency analysis for javascript

Proceedings of the Eighth ACM SIGPLAN workshop on Programming languages and analysis for security
Belief semantics of authorization logic

Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security
Stateful authorization logic --Proof theory and a case study

Journal of Computer Security - STM'10

Quantified Score

Hi-index	0.00

Visualization

Abstract

The Dependency Core Calculus (DCC) is an extension of the computational lambda calculus that was designed in order to capture the notion of dependency that arises in information-flow control, partial evaluation, and other programming-language settings. We show that, unexpectedly, DCC can also be used as a calculus for access control in distributed systems. Initiating the study of DCC from this perspective, we explore some of its appealing properties.