A Modal Logic for Authorization Specification and Reasoning
Authorization policies provide access control to the system resource. This paper proposes a formal modal logic approach for the specification and reasoning about authorizations. Especially we investigate and handle the situation where the security agents knowledge is not specific and the decisions for accessing the system resource are to be made based on the agents knowledge. We introduce modal logic to specify and reason about security policies, then translate the domain into an epistemic logic program. We also present a case study to demonstrate the proposed approach. This approach has an expressive power to describe a variety of complex security scenarios.
Information Security Authorization Policy Modal Logic Logic Program
Yun Bai
School of Computing and Mathematics University of Western Sydney Locked Bag 1797,Penrith South DC NSW 1797,Australia
国际会议
上海
英文
264-268
2009-11-20(万方平台首次上网日期,不代表论文的发表时间)