On formal languages for sequences of authorization transformations

Yun Bai; Vijay Varadharajan

doi:10.1007/3-540-48249-0_32

On formal languages for sequences of authorization transformations

Yun Bai, Vijay Varadharajan

School of Computer, Data & Mathematical Sciences

Research output: Chapter in Book / Conference Paper › Conference Paper › peer-review

1 Citation (Scopus)

Abstract

In a multi-user, information-sharing computer systems, authorization policy is needed to ensure that the information flows in the desired way and to prevent illegal access to the system resource. Usually such policy has a temporal property. That is, it needs to be updated to capture the changing requirements of applications, systems and users. These updates are implemented via transformation of authorization policies. In this paper, we propose two high-level formal languages L and L ^d to specify the transformation of authorizations in secure computer systems. L is a simple language that can be used to specify a sequence of authorization transformations. Though it has a simple syntax and semantics, we show that L is expressive enough to specify some well-known examples of authorization transformations. Language L ^d is an augmentation ofL which includes default propositions within the domain description of authorization policies. However, the semantics of L ^d is not just a simple extension of the semantics of L. We show that L ^d is more expressive than L in that constraints, causal and inherited authorizations, and general default authorizations can be specified.

Original language	English
Title of host publication	Computer Safety, Reliability and Security - 18th International Conference, SAFECOMP 1999, Proceedings
Editors	Massimo Felici, Alberto Pasquini, Karama Kanoun
Publisher	Springer Verlag
Pages	375-384
Number of pages	10
ISBN (Print)	3540664882, 9783540664888
DOIs	https://doi.org/10.1007/3-540-48249-0_32
Publication status	Published - 1999
Event	18th International Conference on Computer Safety, Reliability and Security, SAFECOMP 1999 - Toulouse, France Duration: 27 Sept 1999 → 29 Sept 1999

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	1698
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	18th International Conference on Computer Safety, Reliability and Security, SAFECOMP 1999
Country/Territory	France
City	Toulouse
Period	27/09/99 → 29/09/99

Bibliographical note

Publisher Copyright:
© Springer-Verlag Berlin Heidelberg 1999.

Keywords

Authorization policies
Default logic
Formal language
Policy transformation

Access to Document

10.1007/3-540-48249-0_32

Cite this

Bai, Y., & Varadharajan, V. (1999). On formal languages for sequences of authorization transformations. In M. Felici, A. Pasquini, & K. Kanoun (Eds.), Computer Safety, Reliability and Security - 18th International Conference, SAFECOMP 1999, Proceedings (pp. 375-384). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 1698). Springer Verlag. https://doi.org/10.1007/3-540-48249-0_32

Bai, Yun ; Varadharajan, Vijay. / On formal languages for sequences of authorization transformations. Computer Safety, Reliability and Security - 18th International Conference, SAFECOMP 1999, Proceedings. editor / Massimo Felici ; Alberto Pasquini ; Karama Kanoun. Springer Verlag, 1999. pp. 375-384 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{ccb7dbc28c594aae9a6fc25d8967e365,

title = "On formal languages for sequences of authorization transformations",

abstract = "In a multi-user, information-sharing computer systems, authorization policy is needed to ensure that the information flows in the desired way and to prevent illegal access to the system resource. Usually such policy has a temporal property. That is, it needs to be updated to capture the changing requirements of applications, systems and users. These updates are implemented via transformation of authorization policies. In this paper, we propose two high-level formal languages L and L d to specify the transformation of authorizations in secure computer systems. L is a simple language that can be used to specify a sequence of authorization transformations. Though it has a simple syntax and semantics, we show that L is expressive enough to specify some well-known examples of authorization transformations. Language L d is an augmentation ofL which includes default propositions within the domain description of authorization policies. However, the semantics of L d is not just a simple extension of the semantics of L. We show that L d is more expressive than L in that constraints, causal and inherited authorizations, and general default authorizations can be specified.",

keywords = "Authorization policies, Default logic, Formal language, Policy transformation",

author = "Yun Bai and Vijay Varadharajan",

note = "Publisher Copyright: {\textcopyright} Springer-Verlag Berlin Heidelberg 1999.; 18th International Conference on Computer Safety, Reliability and Security, SAFECOMP 1999 ; Conference date: 27-09-1999 Through 29-09-1999",

year = "1999",

doi = "10.1007/3-540-48249-0_32",

language = "English",

isbn = "3540664882",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "375--384",

editor = "Massimo Felici and Alberto Pasquini and Karama Kanoun",

booktitle = "Computer Safety, Reliability and Security - 18th International Conference, SAFECOMP 1999, Proceedings",

}

Bai, Y & Varadharajan, V 1999, On formal languages for sequences of authorization transformations. in M Felici, A Pasquini & K Kanoun (eds), Computer Safety, Reliability and Security - 18th International Conference, SAFECOMP 1999, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 1698, Springer Verlag, pp. 375-384, 18th International Conference on Computer Safety, Reliability and Security, SAFECOMP 1999, Toulouse, France, 27/09/99. https://doi.org/10.1007/3-540-48249-0_32

On formal languages for sequences of authorization transformations. / Bai, Yun; Varadharajan, Vijay.
Computer Safety, Reliability and Security - 18th International Conference, SAFECOMP 1999, Proceedings. ed. / Massimo Felici; Alberto Pasquini; Karama Kanoun. Springer Verlag, 1999. p. 375-384 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 1698).

Research output: Chapter in Book / Conference Paper › Conference Paper › peer-review

TY - GEN

T1 - On formal languages for sequences of authorization transformations

AU - Bai, Yun

AU - Varadharajan, Vijay

N1 - Publisher Copyright: © Springer-Verlag Berlin Heidelberg 1999.

PY - 1999

Y1 - 1999

N2 - In a multi-user, information-sharing computer systems, authorization policy is needed to ensure that the information flows in the desired way and to prevent illegal access to the system resource. Usually such policy has a temporal property. That is, it needs to be updated to capture the changing requirements of applications, systems and users. These updates are implemented via transformation of authorization policies. In this paper, we propose two high-level formal languages L and L d to specify the transformation of authorizations in secure computer systems. L is a simple language that can be used to specify a sequence of authorization transformations. Though it has a simple syntax and semantics, we show that L is expressive enough to specify some well-known examples of authorization transformations. Language L d is an augmentation ofL which includes default propositions within the domain description of authorization policies. However, the semantics of L d is not just a simple extension of the semantics of L. We show that L d is more expressive than L in that constraints, causal and inherited authorizations, and general default authorizations can be specified.

AB - In a multi-user, information-sharing computer systems, authorization policy is needed to ensure that the information flows in the desired way and to prevent illegal access to the system resource. Usually such policy has a temporal property. That is, it needs to be updated to capture the changing requirements of applications, systems and users. These updates are implemented via transformation of authorization policies. In this paper, we propose two high-level formal languages L and L d to specify the transformation of authorizations in secure computer systems. L is a simple language that can be used to specify a sequence of authorization transformations. Though it has a simple syntax and semantics, we show that L is expressive enough to specify some well-known examples of authorization transformations. Language L d is an augmentation ofL which includes default propositions within the domain description of authorization policies. However, the semantics of L d is not just a simple extension of the semantics of L. We show that L d is more expressive than L in that constraints, causal and inherited authorizations, and general default authorizations can be specified.

KW - Authorization policies

KW - Default logic

KW - Formal language

KW - Policy transformation

UR - http://www.scopus.com/inward/record.url?scp=33745121588&partnerID=8YFLogxK

U2 - 10.1007/3-540-48249-0_32

DO - 10.1007/3-540-48249-0_32

M3 - Conference Paper

AN - SCOPUS:33745121588

SN - 3540664882

SN - 9783540664888

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 375

EP - 384

BT - Computer Safety, Reliability and Security - 18th International Conference, SAFECOMP 1999, Proceedings

A2 - Felici, Massimo

A2 - Pasquini, Alberto

A2 - Kanoun, Karama

PB - Springer Verlag

T2 - 18th International Conference on Computer Safety, Reliability and Security, SAFECOMP 1999

Y2 - 27 September 1999 through 29 September 1999

ER -

Bai Y, Varadharajan V. On formal languages for sequences of authorization transformations. In Felici M, Pasquini A, Kanoun K, editors, Computer Safety, Reliability and Security - 18th International Conference, SAFECOMP 1999, Proceedings. Springer Verlag. 1999. p. 375-384. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/3-540-48249-0_32

On formal languages for sequences of authorization transformations

Abstract

Publication series

Conference

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this