Title :
Type-based distributed access control
Author :
Chothia, Tom ; Duggan, Dominic ; Vitek, Jan
Author_Institution :
Dept. of Comput. Sci., Stevens Inst. of Technol., Hoboken, NJ, USA
Abstract :
The key-based decentralized label model (KDLM) is a type system that combines a weak form of information flow control, termed distributed access control in the article, with typed cryptographic operations. The motivation is to have a type system that ensures access control while giving the application the responsibility to secure network communications, and to do this safely. KDLM introduces the notion of declassification certificates to support the declassification of encrypted data.
Keywords :
authorisation; distributed control; public key cryptography; telecommunication security; KDLM; cryptographic operation; data encryption; declassification certificate; distributed access control; information flow control; key-based decentralized label model; network communication; type system; Access control; Communication system control; Communication system security; Computer networks; Computer science; Cryptography; Data security; Distributed control; Dynamic programming; Middleware;
Conference_Titel :
Computer Security Foundations Workshop, 2003. Proceedings. 16th IEEE
Print_ISBN :
0-7695-1927-X
DOI :
10.1109/CSFW.2003.1212712
