• DocumentCode
    2947651
  • Title

    Labeled Sequent Calculi for Access Control Logics: Countermodels, Saturation and Abduction

  • Author

    Genovese, Vincenzo ; Garg, Deepak ; Rispoli, D.

  • Author_Institution
    Univ. of Luxembourg, Luxembourg, Luxembourg
  • fYear
    2012
  • fDate
    25-27 June 2012
  • Firstpage
    139
  • Lastpage
    153
  • Abstract
    We show that Kripke semantics of modal logic, manifest in the syntactic proof formalism of labeled sequent calculi, can be used to solve three central problems in access control: Generating evidence for denial of access (counter model generation), finding all consequences of a policy (saturation) and determining which additional credentials will allow an access (abduction). At the core of our work is a single, non-trivial, counter model producing decision procedure for a specific access control logic. The procedure is based on backwards search in a labeled sequent calculus for the logic. Modifications of the calculus yield a procedure for abduction and, surprisingly, for saturation.
  • Keywords
    authorisation; formal logic; theorem proving; Kripke semantics; access abduction; access control logics; backward search; decision procedure; denial of access countermodel generation; evidence generation; labeled sequent calculi; modal logic; policy saturation; single-nontrivial countermodel; syntactic proof formalism; Authorization; Calculus; History; Semantics; Standards; Syntactics;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Foundations Symposium (CSF), 2012 IEEE 25th
  • Conference_Location
    Cambridge, MA
  • ISSN
    1940-1434
  • Print_ISBN
    978-1-4673-1918-8
  • Electronic_ISBN
    1940-1434
  • Type

    conf

  • DOI
    10.1109/CSF.2012.11
  • Filename
    6266157
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2947651