Abstract
![CDATA[In this paper, we propose a logic program based formulation that supports delegatable authorizations, where negation as failure, classical negation and rules inheritance are allowable. A conflict resolution policy has been developed in our approach that can be used to support the controlled delegation and exception. In our framework, authorization rules are specified in a Delegatable Authorization Program (DAP) which is an extended logic program associated with different types of partial orderings on the domain, and these orderings specify various inheritance relationships among subjects, objects and access rights in the domain. The semantics of a DAP is defined based on the well-known stable model and the conflict resolution is achieved in the process of model generation for the underlying DAP. Our framework provides users a feasible way to express complex security policies.]]
Original language | English |
---|---|
Title of host publication | Foundations of Intelligent Systems: Proceedings of the 13th International Symposium, ISMIS 2002, Lyon, France, June 27-29, 2002 |
Publisher | Springer-Verlag |
Number of pages | 9 |
ISBN (Print) | 3540437851 |
Publication status | Published - 2002 |
Event | International Symposium on Methodologies for Intelligent Systems - Duration: 1 Jan 2002 → … |
Conference
Conference | International Symposium on Methodologies for Intelligent Systems |
---|---|
Period | 1/01/02 → … |
Keywords
- expert systems (computer science)
- logic programming
- Delegatable Authorization Program (DAP)
- computer science