Cassandra: Distributed Access Control Policies with Tunable Expressiveness

Yorktown Heights, New York June 07-June 09

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/POLICY.2004.1309162

Fifth IEEE International Workshop on ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Moritz Y. Becker Articles by Peter Sewell

	ASCII Text	x
	Moritz Y. Becker, Peter Sewell, "Cassandra: Distributed Access Control Policies with Tunable Expressiveness," Policies for Distributed Systems and Networks, IEEE International Workshop on, pp. 159, Fifth IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'04), 2004.

	BibTex	x
	@article{ 10.1109/POLICY.2004.1309162, author = {Moritz Y. Becker and Peter Sewell}, title = {Cassandra: Distributed Access Control Policies with Tunable Expressiveness}, journal ={Policies for Distributed Systems and Networks, IEEE International Workshop on}, volume = {0}, year = {2004}, isbn = {0-7695-2141-X}, pages = {159}, doi = {http://doi.ieeecomputersociety.org/10.1109/POLICY.2004.1309162}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Policies for Distributed Systems and Networks, IEEE International Workshop on TI - Cassandra: Distributed Access Control Policies with Tunable Expressiveness SN - 0-7695-2141-X SP EP A1 - Moritz Y. Becker, A1 - Peter Sewell, PY - 2004 KW - null VL - 0 JA - Policies for Distributed Systems and Networks, IEEE International Workshop on ER -

Moritz Y. Becker, University of Cambridge, UK

Peter Sewell, University of Cambridge, UK

We study the specification of access control policy in large-scale distributed systems. Our work on real-world policies has shown that standard policy idioms such as role hierarchy or role delegation occur in practice in many subtle variants. A policy specification language should therefore be able to express this variety of features smoothly, rather than add them as specific features in an ad hoc way, as is the case in many existing languages.

We present Cassandra, a role-based trust management system with an elegant and readable policy specification language based on Datalog with constraints. The expressiveness (and computational complexity) of the language can be adjusted by choosing an appropriate constraint domain. With just five special predicates, we can easily express a wide range of policies including role hierarchy, role delegation, separation of duties, cascading revocation, automatic credential discovery and trust negotiation. Cassandra has a formal semantics for query evaluation and for the access control enforcement engine. We use a goal-oriented distributed policy evaluation algorithm that is efficient and guarantees termination. Initial performance results for our prototype implementation have been promising.

Citation:

Moritz Y. Becker, Peter Sewell, "Cassandra: Distributed Access Control Policies with Tunable Expressiveness," policy, pp.159, Fifth IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'04), 2004

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.