Title :
A modal logic for authorization specification and reasoning
Author_Institution :
Sch. of Comput. & Math., Univ. of Western Sydney, Sydney, NSW, Australia
Abstract :
Authorization policies provide access control to the system resource. This paper proposes a formal modal logic approach for the specification and reasoning about authorizations. Especially we investigate and handle the situation where the security agent´s knowledge is not specific and the decisions for accessing the system resource are to be made based on the agent´s knowledge. We introduce modal logic to specify and reason about security policies, then translate the domain into an epistemic logic program. We also present a case study to demonstrate the proposed approach. This approach has an expressive power to describe a variety of complex security scenarios.
Keywords :
authorisation; formal logic; formal specification; knowledge based systems; reasoning about programs; access control; authorization specification; epistemic logic program; formal modal logic; reasoning; security agent knowledge; Access control; Australia; Authorization; Database systems; Formal languages; Information security; Logic; Mathematics; Permission; Power system security; Authorization Policy; Information Security; Logic Program; Modal Logic;
Conference_Titel :
Intelligent Computing and Intelligent Systems, 2009. ICIS 2009. IEEE International Conference on
Conference_Location :
Shanghai
Print_ISBN :
978-1-4244-4754-1
Electronic_ISBN :
978-1-4244-4738-1
DOI :
10.1109/ICICISYS.2009.5357848
