English
Related papers

Related papers: PTaCL: A Language for Attribute-Based Access Contr…

200 papers

Today's business organizations need access control systems that can handle complex, changing security requirements that go beyond what traditional methods can manage. Current approaches, such as Role-Based Access Control (RBAC),…

Cryptography and Security · Computer Science 2026-02-17 Sharif Noor Zisad , Ragib Hasan

We present a systematic technique for transforming XACML 3.0 policies in Answer Set Programming (ASP). We show that the resulting logic program has a unique answer set that directly corresponds to our formalisation of the standard semantics…

Information Theory · Computer Science 2015-03-11 Carroline Dewi Puspa Kencana Ramli , Hanne Riis Nielson , Flemming Nielson

Ontologies are traditionally expressed in the Web Ontology Language (OWL), that provides a syntax for expressing taxonomies with axioms regulating class membership. The semantics of OWL, based on Description Logic (DL), allows for the use…

Information Theory · Computer Science 2023-09-07 Veronika Heimsbakk , Kristian Torkelsen

Attribute-based access control (ABAC) provides a high level of flexibility that promotes security and information sharing. ABAC policy mining algorithms have potential to significantly reduce the cost of migration to ABAC, by partially…

Cryptography and Security · Computer Science 2014-08-08 Zhongyuan Xu , Scott D. Stoller

This paper introduces language-based agent control (LBAC), a new programming model for agentic applications that brings techniques from programming languages and language-based security to the problem of agent control. In conventional…

Programming Languages · Computer Science 2026-05-14 Timothy Zhou , Loris D'Antoni , Nadia Polikarpova

The semantics of probabilistic languages has been extensively studied, but specification languages for their properties have received little attention. This paper introduces the probabilistic dynamic logic pDL, a specification logic for…

Logic in Computer Science · Computer Science 2022-08-22 Raúl Pardo , Einar Broch Johnsen , Ina Schaefer , Andrzej Wąsowski

Currently, eXtensible Access Control Markup Language (XACML) has becoming the standard for implementing access control policies and consequently more attention is dedicated to testing the correctness of XACML policies. In particular,…

Software Engineering · Computer Science 2018-09-11 Francesca Lonetti , Eda Marchetti

The increasing use of graph-structured data for business- and privacy-critical applications requires sophisticated, flexible and fine-grained authorization and access control. Currently, role-based access control is supported in graph…

Cryptography and Security · Computer Science 2023-06-23 Aya Mohamed , Dagmar Auer , Daniel Hofer , Josef Küng

The proliferation of autonomous AI agents within enterprise environments introduces a critical security challenge: managing access control for emergent, novel tasks for which no predefined policies exist. This paper introduces an advanced…

Cryptography and Security · Computer Science 2025-10-14 Charles Fleming , Ashish Kundu , Ramana Kompella

In today's dynamic ICT environments, the ability to control users' access to resources becomes ever important. On the one hand, it should adapt to the users' changing needs; on the other hand, it should not be compromised. Therefore, it is…

Cryptography and Security · Computer Science 2017-03-08 A. S. M. Kayes , Jun Han , Wenny Rahayu , Md. Saiful Islam , Alan Colman

Propositional Linear Temporal Logic (LTL) is a popular formalism for specifying desirable requirements and security and privacy policies for software, networks, and systems. Yet expressing such requirements and policies in LTL remains…

Logic in Computer Science · Computer Science 2026-04-09 Priscilla Kyei Danso , Mohammad Saqib Hasan , Niranjan Balasubramanian , Omar Chowdhury

The evolving smart and interconnected systems are designed to operate with minimal human intervention. Devices within these smart systems often engage in prolonged operations based on sensor data and contextual factors. Recently, an…

Cryptography and Security · Computer Science 2024-03-18 Tanjila Mawla , Maanak Gupta , Ravi Sandhu

On the one hand, ACME is a language designed in the late 90s as an interchange format for software architectures. The need for recon guration at runtime has led to extend the language with speci c support in Plastik. On the other hand, PDDL…

Software Engineering · Computer Science 2012-06-04 Jean-Eudes Méhus , Thais Batista , Jérémy Buisson

Developing simple and expressive access controls -- interfaces to specify policies that define who should have access to resources and under what circumstances -- is a longstanding challenge in usable security. We present Sketch-based…

Human-Computer Interaction · Computer Science 2026-05-12 Kyzyl Monteiro , Sauvik Das

We study verification of systems whose transitions consist of accesses to a Web-based data-source. An access is a lookup on a relation within a relational database, fixing values for a set of positions in the relation. For example, a…

Databases · Computer Science 2012-03-30 Michael Benedikt , Pierre Bourhis , Clemens Ley

Access control in the Internet of Things (IoT) is becoming increasingly complex, as policies must account for dynamic and contextual factors such as time, location, user behavior, and environmental conditions. However, existing platforms…

Computation and Language · Computer Science 2025-06-02 Ye Cheng , Minghui Xu , Yue Zhang , Kun Li , Hao Wu , Yechao Zhang , Shaoyong Guo , Wangjie Qiu , Dongxiao Yu , Xiuzhen Cheng

Administrator-centered access control failures can cause data breaches, putting organizations at risk of financial loss and reputation damage. Existing graphical policy configuration tools and automated policy generation frameworks attempt…

Cryptography and Security · Computer Science 2023-10-06 Sakuna Harinda Jayasundara , Nalin Asanka Gamagedara Arachchilage , Giovanni Russello

A security policy states the acceptable actions of an information system, as the actions bear on security. There is a pressing need for organizations to declare their security policies, even informal statements would be better than the…

Cryptography and Security · Computer Science 2007-05-23 James A. Hoagland , Raju Pandey , Karl N. Levitt

Organizations often lay down rules or guidelines called Natural Language Access Control Policies (NLACPs) for specifying who gets access to which information and when. However, these cannot be directly used in a target access control model…

Cryptography and Security · Computer Science 2025-02-19 Pratik Sonune , Ritwik Rai , Shamik Sural , Vijayalakshmi Atluri , Ashish Kundu

Large Language Models (LLMs) face a fundamental safety-helpfulness trade-off due to static, one-size-fits-all safety policies that lack runtime controllabilityxf, making it difficult to tailor responses to diverse application needs. %As a…

Computation and Language · Computer Science 2026-02-09 Jianfeng Si , Lin Sun , Weihong Lin , Xiangzheng Zhang