Behavioural Sets and Operations in Treaty Systems

Author

Yining Zhao ; Wood, Alan

Author_Institution

Dept. of Comput. Sci., Univ. of York, York, UK

fYear

2012

fDate

7-9 Dec. 2012

Firstpage

315

Lastpage

320

Abstract

Capabilities are a more scalable and adaptive access control approach compared with the conventional approaches such as ACLs, due to their being held and managed by users or agents in systems, but not the middleware. This feature makes capabilities more suitable in distributed environments that have unstable populations. However capabilities have a simple structure that only supports independent and unbounded access rights, and this shows their weakness in complex cases. Treaties have been proposed to enhance the capability approach by introducing sequences of actions. In this way, treaties can capture characteristics of behaviours, and provide finer control over accesses. Treaties are also designed to be refinable by users, using the functionality provided by specific treaty operations. In this paper we introduce the concept of treaties and operations in more detail, proving that specific treaty operations maintain behavioural integrity.

Keywords

authorisation; distributed processing; access control list; adaptive access control approach; behavioural integrity; behavioural sets; middleware; treaty operations; treaty systems; Access control; Computer science; Educational institutions; Electronic mail; Kernel; Logic gates; Memory management; Access Control; Behaviour Control; Behaviour Set; Distributed Computing; Treaties;

fLanguage

English

Publisher

ieee

Conference_Titel

Control Engineering and Communication Technology (ICCECT), 2012 International Conference on

Conference_Location

Liaoning

Print_ISBN

978-1-4673-4499-9

Type

conf

DOI

10.1109/ICCECT.2012.114

Filename

6414096