Abstract
Trust management is a promising approach for the authorization in distributed environment. There are two key issues for a trust management system: how to design high-level policy language and how to solve the compliance checking problem. We adopt this approach to deal with distributed authorization with delegation. In this paper, we propose an authorization language AL, a human-understandable high level language to specify various authorization policies. Language AL has rich expressive power which can not only specify delegation, and threshold structures addressed in previous approaches, but also represent structured resources and privileges, positive and negative authorizations, separation of duty, incomplete information reasoning and partial authorization and delegation. We define the semantics of AL through logic programming with answer set semantics and through an authorization scenario we demonstrate the application of language AL .
Original language | English |
---|---|
Title of host publication | 9th International Conference, KES 2005, Melbourne, Australia, September 14-16, 2005: Proceedings, Part I |
Publisher | Springer |
Number of pages | 7 |
ISBN (Print) | 9783540319832 |
Publication status | Published - 2005 |
Event | International Conference on Knowledge-Based Intelligent Information and Engineering Systems - Duration: 8 Sept 2010 → … |
Conference
Conference | International Conference on Knowledge-Based Intelligent Information and Engineering Systems |
---|---|
Period | 8/09/10 → … |
Keywords
- trust management
- authorization language
- logic programming
- distributed authorization
- computer security
- access control