Advanced Search

Browse by Discipline

Scientific Societies

E-print Alerts

Add E-prints

E-print Network

  Advanced Search  

Variations in Access Control Logic Martin Abadi1,2

Summary: Variations in Access Control Logic
Mart´in Abadi1,2
University of California, Santa Cruz
Microsoft Research, Silicon Valley
Abstract. In this paper we investigate the design space of access con-
trol logics. Specifically, we consider several possible axioms for the com-
mon operator says. Some of the axioms come from modal logic and
programming-language theory; others are suggested by ideas from secu-
rity, such as delegation of authority and the Principle of Least Privilege.
We compare these axioms and study their implications.
1 Introduction
While access control appears in various guises in many aspects of computer
systems, it is attractive to reduce it, as much as possible, to few central concepts
and rules [17]. The development and use of general logics for access control is an
ongoing effort in this direction. In this paper, we examine and compare several
logics for access control.
The logics that we consider all have the same operators and intended applica-
tions, but they differ in their axioms and rules. They all start from propositional


Source: Abadi, Martín - Department of Computer Science, University of California at Santa Cruz


Collections: Computer Technologies and Information Sciences