Name
Abstract | ||
|---|---|---|
In ownership-based access control frameworks with the possibility of delegating permissions and administrative rights, chains of delegated accesses will form. There are different ways to treat these delegation chains when revoking rights, which give rise to different revocation schemes. In this paper, we show how IDP - a knowledge base system that integrates technology from ASP, SAT and CP - can be used to efficiently implement executable revocation schemes for an ownership-based access control system based on a declarative specification of their properties. |
Year | Venue | Field |
|---|---|---|
2014 | arXiv: Logic in Computer Science | Computer security,Revocation,Access control,Knowledge base,Delegation,Mathematics,Executable |
DocType | Volume | Citations |
Journal | abs/1405.1584 | 0 |
PageRank | References | Authors |
0.34 | 1 | 4 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Marcos Cramer | 1 | 31 | 6.93 |
| Pieter Van Hertum | 2 | 3 | 1.78 |
| Diego Agustin Ambrossio | 3 | 1 | 1.36 |
| Marc Denecker | 4 | 1626 | 106.40 |