English

Integrity Constraints in Trust Management

Cryptography and Security 2007-05-23 v1 Databases

Abstract

We introduce the use, monitoring, and enforcement of integrity constraints in trust management-style authorization systems. We consider what portions of the policy state must be monitored to detect violations of integrity constraints. Then we address the fact that not all participants in a trust management system can be trusted to assist in such monitoring, and show how many integrity constraints can be monitored in a conservative manner so that trusted participants detect and report if the system enters a policy state from which evolution in unmonitored portions of the policy could lead to a constraint violation.

Keywords

Cite

@article{arxiv.cs/0503061,
  title  = {Integrity Constraints in Trust Management},
  author = {Sandro Etalle and William H. Winsborough},
  journal= {arXiv preprint arXiv:cs/0503061},
  year   = {2007}
}

Comments

An extended abstract appears in the proc. of the 10th ACM Symp. on Access Control Models and Technologies (SACMAT). 2005