English
Related papers

Related papers: Static Enforceability of XPath-Based Access Contro…

200 papers

In this paper, we consider the setting of graph-structured data that evolves as a result of operations carried out by users or applications. We study different reasoning problems, which range from ensuring the satisfaction of a given set of…

Artificial Intelligence · Computer Science 2014-05-30 Shqiponja Ahmetaj , Diego Calvanese , Magdalena Ortiz , Mantas Simkus

Traditional authorization policies are user-centric, in the sense that authorization is defined, ultimately, in terms of user identities. We believe that this user-centric approach is inappropriate for many applications, and that what…

Cryptography and Security · Computer Science 2014-06-20 Jason Crampton , James Sellwood

Cross-border access to a variety of data such as market information, strategic information, or customer-related information defines the daily business of many global companies, including financial institutions. These companies are obliged…

Cryptography and Security · Computer Science 2010-06-24 Michael Stieghahn , Thomas Engel

There is an increasing trend for businesses to migrate their systems towards the cloud. Security concerns that arise when outsourcing data and computation to the cloud include data confidentiality and privacy. Given that a tremendous amount…

Cryptography and Security · Computer Science 2012-10-03 Tien Tuan Anh Dinh , Anwitaman Datta

Currently, eXtensible Access Control Markup Language (XACML) has becoming the standard for implementing access control policies and consequently more attention is dedicated to testing the correctness of XACML policies. In particular,…

Software Engineering · Computer Science 2018-09-11 Francesca Lonetti , Eda Marchetti

Metaprogramming and effect handlers interact in unexpected, and sometimes undesirable, ways. One example is scope extrusion: the generation of ill-scoped code. Scope extrusion can either be preemptively prevented, via static type systems,…

Programming Languages · Computer Science 2026-01-27 Michael Lee , Ningning Xie , Oleg Kiselyov , Jeremy Yallop

In this paper, we coin the term Policy Enforcement as a Service (PEPS), which enables the provision of innovative inter-layer and inter-domain Access Control. We leverage the architecture of Software-Defined-Network (SDN) to introduce a…

Cryptography and Security · Computer Science 2016-10-11 Arash Shaghaghi , Mohamed Ali , Kaafar , Sandra Scott-Hayward , Salil S. Kanhere , Sanjay Jha

Large systems are commonly internetworked. A security policy describes the communication relationship between the networked entities. The security policy defines rules, for example that A can connect to B, which results in a directed graph.…

Cryptography and Security · Computer Science 2014-05-07 Cornelius Diekmann , Lars Hupel , Georg Carle

The static analysis of cache accesses consists in correctly predicting which accesses are hits or misses. While there exist good exact and approximate analyses for caches implementing the least recently used (LRU) replacement policy, such…

Hardware Architecture · Computer Science 2022-02-01 David Monniaux

Reachability analysis evaluates system safety, by identifying the set of states a system may evolve within over a finite time horizon. In contrast to model-based reachability analysis, data-driven reachability analysis estimates reachable…

Systems and Control · Electrical Eng. & Systems 2026-04-06 Elizabeth Dietrich , Hanna Krasowski , Murat Arcak

Safety is a critical feature of controller design for physical systems. When designing control policies, several approaches to guarantee this aspect of autonomy have been proposed, such as robust controllers or control barrier functions.…

Machine Learning · Computer Science 2021-02-26 Miguel Calvo-Fullana , Luiz F. O. Chamon , Santiago Paternain

Controlling real-world networked systems, including ecological, biomedical, and engineered networks that exhibit higher-order interactions, remains challenging due to inherent nonlinearities and large system scales. Despite extensive…

Optimization and Control · Mathematics 2026-03-23 Joshua Pickard , Xin Mao , Can Chen

Instrumenting programs for performing run-time checking of properties, such as regular shapes, is a common and useful technique that helps programmers detect incorrect program behaviors. This is specially true in dynamic languages such as…

Programming Languages · Computer Science 2018-04-09 Maximiliano Klemen , Nataliia Stulova , Pedro Lopez-Garcia , José F. Morales , Manuel V. Hermenegildo

Pushdown systems (PDSs) are a natural model for sequential programs, but they can fail to accurately represent the way an assembly stack actually operates. Indeed, one may want to access the part of the memory that is below the current…

Formal Languages and Automata Theory · Computer Science 2018-11-08 Adrien Pommellet , Marcio Diaz , Tayssir Touili

The workflow satisfiability problem is concerned with determining whether it is possible to find an allocation of authorized users to the steps in a workflow in such a way that all constraints are satisfied. The problem is NP-hard in…

Cryptography and Security · Computer Science 2012-10-16 J. Crampton , R. Crowston , G. Gutin , M. Jones , M. S. Ramanujan

The enforcement of security policies in outsourced environments is still an open challenge for policy-based systems. On the one hand, taking the appropriate security decision requires access to the policies. However, if such access is…

Cryptography and Security · Computer Science 2013-06-21 Muhammad Rizwan Asghar , Mihaela Ion , Giovanni Russello , Bruno Crispo

Maintaining the security of control systems in the presence of integrity attacks is a significant challenge. In literature, several possible attacks against control systems have been formulated including replay, false data injection, and…

Systems and Control · Computer Science 2017-06-27 Sean Weerakkody , Bruno Sinopoli

Partially-Observable Markov Decision Processes (POMDPs) are a well-known stochastic model for sequential decision making under limited information. We consider the EXPTIME-hard problem of synthesising policies that almost-surely reach some…

Artificial Intelligence · Computer Science 2021-03-22 Sebastian Junges , Nils Jansen , Sanjit A. Seshia

Diffusion policies (DPs) achieve state-of-the-art performance on complex manipulation tasks by learning from large-scale demonstration datasets, often spanning multiple embodiments and environments. However, they cannot guarantee safe…

This paper proposes a computational model for policy administration. As an organization evolves, new users and resources are gradually placed under the mediation of the access control model. Each time such new entities are added, the policy…

Cryptography and Security · Computer Science 2024-01-02 Si Zhang , Philip W. L. Fong