A formal language for access control policies in distributed environment

Author

Liu, Peng ; Hu, Jian-Bin ; Chen, Zhong

Author_Institution

Dept. of Comput. Sci., Peking Univ., Beijing, China

fYear

2005

fDate

19-22 Sept. 2005

Firstpage

766

Lastpage

769

Abstract

Although several access control policies have been proposed for securing access to resources, they focused on security of distributed environments that were rather static. Nowadays, distributed environment becomes open and dynamic. In this paper, we propose a formal language for access control policies in open and dynamic environment. The language is based on description logic program and generalized courteous logic program supporting classical negation, prioritized conflict handling and mutual exclusion constraints. The language allows the specification of positive and negative authorization, privilege delegation and revocation, prioritized conflict resolution and mutual authorization exclusions.

Keywords

authorisation; distributed processing; formal languages; logic programming; access control policy; conflict handling; description logic program; distributed environment; dynamic environment; formal language; generalized courteous logic program; mutual authorization exclusion; mutual exclusion constraint; open environment; prioritized conflict resolution; privilege delegation; Access control; Authorization; Computer science; Formal languages; Information security; Logic; Ontologies; Semantic Web; Web services; Wireless communication;

fLanguage

English

Publisher

ieee

Conference_Titel

Web Intelligence, 2005. Proceedings. The 2005 IEEE/WIC/ACM International Conference on

Print_ISBN

0-7695-2415-X

Type

conf

DOI

10.1109/WI.2005.2

Filename

1517950