English
Related papers

Related papers: The Authorization Policy Existence Problem

200 papers

User authorization queries in the context of role-based access control have attracted considerable interest in the last 15 years. Such queries are used to determine whether it is possible to allocate a set of roles to a user that enables…

Cryptography and Security · Computer Science 2021-04-14 Jason Crampton , Gregory Gutin , Diptapriyo Majumdar

A workflow is a collection of steps that must be executed in some specific order to achieve an objective. A computerised workflow management system may enforce authorisation policies and constraints, thereby restricting which users can…

Data Structures and Algorithms · Computer Science 2015-02-02 Jason Crampton , Gregory Z. Gutin , Daniel Karapetyan

In this paper we argue that policies are an increasing concern for organizations that are operating a web site. Examples of policies that are relevant in the domain of the web address issues such as privacy of personal data, accessibility…

Computers and Society · Computer Science 2008-07-31 Holger M. Kienle , Hausi A. Müller

A computerized workflow management system may enforce a security policy, specified in terms of authorized actions and constraints, thereby restricting which users can perform particular steps in a workflow. The existence of a security…

Cryptography and Security · Computer Science 2016-11-16 Jason Crampton , Gregory Gutin , Daniel Karapetyan , Rémi Watrigant

A workflow specification defines sets of steps and users. An authorization policy determines for each user a subset of steps the user is allowed to perform. Other security requirements, such as separation-of-duty, impose constraints on…

Cryptography and Security · Computer Science 2015-09-15 Jason Crampton , Andrei Gagarin , Gregory Gutin , Mark Jones , Magnus Wahlstrom

Security requirements in distributed software systems are inherently dynamic. In the case of authorization policies, resources are meant to be accessed only by authorized parties, but the authorization to access a resource may be…

Logic in Computer Science · Computer Science 2016-02-12 Silvia Ghilezan , Svetlana Jakšić , Jovanka Pantović , Jorge A. Pérez , Hugo Torres Vieira

In today's dynamic and interconnected world, resource constraints pose significant challenges across various domains, ranging from networks, logistics and manufacturing to project management and optimization, etc. Resource-constrained…

Computer Science and Game Theory · Computer Science 2023-11-09 Shiksha Singhal

This report presents a taxonomy of vulnerabilities created as a part of an effort to develop a framework for deriving verification and validation strategies to assess software security. This taxonomy is grounded in a theoretical model of…

Cryptography and Security · Computer Science 2007-05-23 Anil Bazaz , James D. Arthur

To date, most work regarding the formal analysis of access control schemes has focused on quantifying and comparing the expressive power of a set of schemes. Although expressive power is important, it is a property that exists in an…

Cryptography and Security · Computer Science 2013-02-06 William C. Garrison , Adam J. Lee , Timothy L. Hinrichs

The advance of web services technologies promises to have far-reaching effects on the Internet and enterprise networks allowing for greater accessibility of data. The security challenges presented by the web services approach are…

Logic in Computer Science · Computer Science 2012-06-15 Michele Barletta , Silvio Ranise , Luca Viganò

The workflow satisfiability problem (WSP) asks whether there exists an assignment of authorized users to the steps in a workflow specification that satisfies the constraints in the specification. The problem is NP-hard in general, but…

Data Structures and Algorithms · Computer Science 2015-05-18 D. Cohen , J. Crampton , A. Gagarin , G. Gutin , M. Jones

A wide range of problems can be modelled as constraint satisfaction problems (CSPs), that is, a set of constraints that must be satisfied simultaneously. Constraints can either be represented extensionally, by explicitly listing allowed…

Artificial Intelligence · Computer Science 2015-02-10 Evgenij Thorstensen

Although many investigators affirm a desire to build reasoning systems that behave consistently with the axiomatic basis defined by probability theory and utility theory, limited resources for engineering and computation can make a complete…

Artificial Intelligence · Computer Science 2013-04-11 Eric J. Horvitz

We introduce statistical constraints, a declarative modelling tool that links statistics and constraint programming. We discuss two statistical constraints and some associated filtering algorithms. Finally, we illustrate applications to…

Artificial Intelligence · Computer Science 2014-09-09 Roberto Rossi , Steven Prestwich , S. Armagan Tarim

We introduce a causal framework for designing optimal policies that satisfy fairness constraints. We take a pragmatic approach asking what we can do with an action space available to us and only with access to historical data. We propose…

Machine Learning · Computer Science 2023-01-31 Limor Gultchin , Siyuan Guo , Alan Malek , Silvia Chiappa , Ricardo Silva

Robust access control is a cornerstone of secure software, systems, and networks. An access control mechanism is as effective as the policy it enforces. However, authoring effective policies that satisfy desired properties such as the…

Cryptography and Security · Computer Science 2026-01-23 Ka Lok Wu , Christa Jenkins , Scott D. Stoller , Omar Chowdhury

Attribute-based methods, such as attribute-based access control and attribute-based encryption, make decisions based on attributes possessed by a subject rather than the subject's identity. While this allows for anonymous authorization --…

Cryptography and Security · Computer Science 2023-10-10 Erin Lanus , Charles J. Colbourn , Gail-Joon Ahn

Selection under category or diversity constraints is a ubiquitous and widely-applicable problem that is encountered in immigration, school choice, hiring, and healthcare rationing. These diversity constraints are typically represented by…

Computer Science and Game Theory · Computer Science 2023-02-21 Haris Aziz , Sean Morota Chu , Zhaohong Sun

Norms have been extensively proposed as coordination mechanisms for both agent and human societies. Nevertheless, choosing the norms to regulate a society is by no means straightforward. The reasons are twofold. First, the norms to choose…

Multiagent Systems · Computer Science 2017-04-04 Maite Lopez-Sanchez , Marc Serramia , Juan A. Rodriguez-Aguilar , Javier Morales , Michael Wooldridge

In distributed environments, access control decisions depend on statements of multiple agents rather than only one central trusted party. However, existing policy languages put few emphasis on authorization provenances. The capability of…

Logic in Computer Science · Computer Science 2010-07-15 Jinwei Hu