@inproceedings{d19d82a5d1b541398ab6eb1fe09b24f8,
title = "Delegatable authorization program and its application",
abstract = "Data protection is a significant issue in any secure information system. In this paper, we develop a decentralized authorization delegation model in which users can be delegated, granted or forbidden some access rights. This security model is formulated as an extended logic program which allows both negation as failure and classical negation. The stable model semantics is used to decide the users' access rights on data items. Under the proposed framework, conflicting problem is addressed and a promising resolution method is presented based on the underlying delegation relations and hierarchical structures of subjects, objects and access rights. The authorization inheritance are also supported in our model. Finally, as an application, we show how this framework can support different electronic consent models within the context of health care.",
keywords = "Access control, Authorization, Information security, Logic programming",
author = "Chun Ruan and Vijay Varadharajan and Yan Zhang",
year = "2003",
language = "English",
isbn = "1932415165",
series = "Proceedings of the International Conference on Security and Management",
pages = "267--273",
editor = "H.R. Arabnia and Y. Mun and H.R. Arabnia and Y. Mun",
booktitle = "Proceedings of the International Conference on Security and Management, SAM 2003",
note = "Proceedings of the International Conference on Security and Management, SAM 2003 ; Conference date: 23-06-2004 Through 26-06-2004",
}