English
Related papers

Related papers: A Calculus for Modeling Floating Authorizations

200 papers

Security requirements in distributed software systems are inherently dynamic. In the case of authorization policies, resources are meant to be accessed only by authorized parties, but the authorization to access a resource may be…

Logic in Computer Science · Computer Science 2016-02-12 Silvia Ghilezan , Svetlana Jakšić , Jovanka Pantović , Jorge A. Pérez , Hugo Torres Vieira

Real-world applications routinely make authorization decisions based on dynamic computation. Reasoning about dynamically computed authority is challenging. Integrity of the system might be compromised if attackers can improperly influence…

Cryptography and Security · Computer Science 2021-04-22 Owen Arden , Anitha Gollamudi , Ethan Cecchetti , Stephen Chong , Andrew C. Myers

Controlled sharing is fundamental to distributed systems. We consider a capability-based distributed authorization system where a client receives capabilities (access tokens) from an authorization server to access the resources of resource…

Cryptography and Security · Computer Science 2022-11-10 Adrian Shuai Li , Reihaneh Safavi-Naini , Philip W. L. Fong

We consider a calculus of resources and processes as a basis for modelling decision-making in multi-agent systems. The calculus represents the regulation of agents' choices using utility functions that take account of context. Associated…

Logic in Computer Science · Computer Science 2013-10-29 Gabrielle Anderson , Matthew Collinson , David Pym

Proliferation of systems that generate enormous amounts of data and operate in real time has led researchers to rethink the current organization of the cloud. Many proposed solutions consist of a number of small data centers in the vicinity…

Cryptography and Security · Computer Science 2024-10-29 Tamara Ranković , Miloš Simić , Milan Stojkov , Goran Sladić

Authorizing Large Language Model driven agents to dynamically invoke tools and access protected resources introduces significant risks, since current methods for delegating authorization grant overly broad permissions and give access to…

Artificial Intelligence · Computer Science 2025-10-31 Majed El Helou , Chiara Troiani , Benjamin Ryder , Jean Diaconu , Hervé Muyal , Marcelo Yannuzzi

In the field of access control, delegation is an important aspect that is considered as a part of the administration mechanism. Thus, a complete access control must provide a flexible administration model to manage delegation.…

Cryptography and Security · Computer Science 2010-12-14 Meriam Ben Ghorbel-Talbi , Frederic Cuppens , Nora Cuppens-Boulahia , Adel Bouhoula

Constraints such as separation-of-duty are widely used to specify requirements that supplement basic authorization policies. However, the existence of constraints (and authorization policies) may mean that a user is unable to fulfill…

Cryptography and Security · Computer Science 2016-12-20 Pierre Bergé , Jason Crampton , Gregory Gutin , Rémi Watrigant

The problem of optimal authorization of a user in a system with a role-based access control policy is considered. The main criterion is to minimize the risks of permission leakage. The choice of the role for authorization is based on the…

Cryptography and Security · Computer Science 2018-12-21 S. V. Belim , S. Yu. Belim , N. F. Bogachenko , A. N. Kabanov

In this tutorial, we present an authorization model for distributed systems that operate with limited internet connectivity. Reliable internet access remains a luxury for a majority of the world's population. Even for those who can afford…

Cryptography and Security · Computer Science 2016-12-06 Andres Erbsen , Asim Shankar , Ankur Taly

In "Grids" and "collaboratories," we find distributed communities of resource providers and resource consumers, within which often complex and dynamic policies govern who can use which resources for which purpose. We propose a new approach…

Distributed, Parallel, and Cluster Computing · Computer Science 2007-05-23 Laura Pearlman , Von Welch , Ian Foster , Carl Kesselman , Steven Tuecke

Role-Based Access Control (RBAC) is a popular authorization model used to manage data-access constraints in a wide range of systems. RBAC usually defines the static view on the access rights. However, to ensure dependability of a system, it…

Software Engineering · Computer Science 2018-05-16 Inna Vistbakka , Elena Troubitsyna

In distributed environments, access control decisions depend on statements of multiple agents rather than only one central trusted party. However, existing policy languages put few emphasis on authorization provenances. The capability of…

Logic in Computer Science · Computer Science 2010-07-15 Jinwei Hu

Cloud Computing is a set of IT Services that are provided to a customer over a network and these services are delivered by third party provider who owns the infrastructure and reduce the burden at user's end. Nowadays researchers devoted…

Distributed, Parallel, and Cluster Computing · Computer Science 2013-08-26 Gitanjali , Sukhjit Singh Sehra , Jaiteg Singh

The design of embedded control systems is mainly done with model-based tools such as Matlab/Simulink. Numerical simulation is the central technique of development and verification of such tools. Floating-point arithmetic, that is well-known…

Programming Languages · Computer Science 2015-05-18 Alexandre Chapoutot

In a cloud computing environment, access control policy is an effective means of fortification cloud users and cloud resources services against security infringements. Based on analysis of current cloud computing security characteristics,…

Distributed, Parallel, and Cluster Computing · Computer Science 2013-05-14 Sultan Ullah , Zheng Xuefeng , Zhou Feng

We present the Flow-Limited Authorization First-Order Logic (FLAFOL), a logic for reasoning about authorization decisions in the presence of information-flow policies. We formalize the FLAFOL proof system, characterize its proof-theoretic…

Cryptography and Security · Computer Science 2020-12-11 Andrew K. Hirsch , Pedro H. Azevedo de Amorim , Ethan Cecchetti , Ross Tate , Owen Arden

Traditional authorization policies are user-centric, in the sense that authorization is defined, ultimately, in terms of user identities. We believe that this user-centric approach is inappropriate for many applications, and that what…

Cryptography and Security · Computer Science 2014-06-20 Jason Crampton , James Sellwood

Access control needs have broad design implications, but access control specifications may be elicited before, during, or after these needs are captured. Because access control knowledge is distributed, we need to make knowledge asymmetries…

Cryptography and Security · Computer Science 2025-04-28 Shamal Faily

There is widespread agreement that cloud computing have proven cost cutting and agility benefits. However, security and regulatory compliance issues are continuing to challenge the wide acceptance of such technology both from social and…

Distributed, Parallel, and Cluster Computing · Computer Science 2012-11-14 Hanene Boussi Rahmouni , Kamran Munir , Mohammed Odeh , Richard McClatchey
‹ Prev 1 2 3 10 Next ›