Back to Search Start Over

A Logic for State-Modifying Authorization Policies

Authors :
Moritz Y. Becker
Sebastian Nanz
Source :
Computer Security – ESORICS 2007 ISBN: 9783540748342, ESORICS
Publication Year :
2007
Publisher :
Springer Berlin Heidelberg, 2007.

Abstract

We present a logic for specifying policies where access requests can have effects on the authorization state. The logic is semantically defined by a mapping to Transaction Logic. Using this approach, updates to the state are factored out of the resource guard, thus enhancing maintainability and facilitating more expressive policies that take the history of access requests into account. We also present a sound and complete proof system for reasoning about sequences of access requests. This gives rise to a goal-oriented algorithm for finding minimal sequences that lead to a specified target authorization state.

Subjects

Subjects :
Transaction logic
Computer science
Maintainability
Authorization
Guard (computer science)
Computer security
computer.software_genre
computer

Details

ISBN :
978-3-540-74834-2
ISBNs :
9783540748342
Database :
OpenAIRE
Journal :
Computer Security – ESORICS 2007 ISBN: 9783540748342, ESORICS
Accession number :
edsair.doi...........a566a2ad9affb4d4aebd227200f9dc10
Full Text :
https://doi.org/10.1007/978-3-540-74835-9_14
Full Text Access
View/download PDF

Tools

Authors Abstract Subjects Details