A Logical Language for Expressing Authorizations

Oakland, CA May 04-May 07

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/SECPRI.1997.601312

1997 IEEE Symposium on Security and P ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Sushil Jajodia Articles by Pierangela Samarati Articles by V. S. Subrahmanian

	ASCII Text	x
	Sushil Jajodia, Pierangela Samarati, V. S. Subrahmanian, "A Logical Language for Expressing Authorizations," Security and Privacy, IEEE Symposium on, pp. 0031, 1997 IEEE Symposium on Security and Privacy, 1997.

	BibTex	x
	@article{ 10.1109/SECPRI.1997.601312, author = {Sushil Jajodia and Pierangela Samarati and V. S. Subrahmanian}, title = {A Logical Language for Expressing Authorizations}, journal ={Security and Privacy, IEEE Symposium on}, volume = {0}, year = {1997}, issn = {1540-7993}, pages = {0031}, doi = {http://doi.ieeecomputersociety.org/10.1109/SECPRI.1997.601312}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Security and Privacy, IEEE Symposium on TI - A Logical Language for Expressing Authorizations SN - 1540-7993 SP EP A1 - Sushil Jajodia, A1 - Pierangela Samarati, A1 - V. S. Subrahmanian, PY - 1997 KW - Access control KW - authorization KW - secuity policy VL - 0 JA - Security and Privacy, IEEE Symposium on ER -

Sushil Jajodia, George Mason University

Pierangela Samarati, Universita di Milano

V. S. Subrahmanian, University of Maryland

A major drawback of existing access control systems is that they have all been developed with a specific access control policy in mind. This means that all protection requirements (i.e., accesses to be allowed or denied) must be specified in terms of the policy enforced by the system. While this may be trivial for some requirements, specification of other requirements may become quite complex or even impossible. The reason for this is that a single policy simply cannot capture different protection requirements users may need to enforce on different data.In this paper we take a first step towards a model able to support different access control policies.We propose a logical language for the specification of authorizations on which such a model can be based.The language allows users to specify, together with the authorizations, the policy according to which access control decisions are to be made.Policies are expressed by means of rules which enforce derivation of authorizations, conflict resolution, access control, and integrity constraint checking.

Index Terms:

Access control, authorization, secuity policy

Citation:

Sushil Jajodia, Pierangela Samarati, V. S. Subrahmanian, "A Logical Language for Expressing Authorizations," sp, pp.0031, 1997 IEEE Symposium on Security and Privacy, 1997

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.