Rewriting-Based Access Control Policies

In this paper we propose a formalization of access control policies based on term rewriting. The state of the system to which policies are enforced is represented as an algebraic term, which allows us to model several aspects of the policy environment. Policies are implemented by sets of rewrite rul...

Full description

Saved in:
Bibliographic Details
Published in:Electronic notes in theoretical computer science 2007-07, Vol.171 (4), p.59-72
Main Author: de Oliveira, Anderson Santana
Format: Article
Language:English
Subjects:
Access Control Policies
Term Rewriting Systems
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In this paper we propose a formalization of access control policies based on term rewriting. The state of the system to which policies are enforced is represented as an algebraic term, which allows us to model several aspects of the policy environment. Policies are implemented by sets of rewrite rules, whose evaluation produces authorization decisions. We discuss the relation between properties of term rewriting systems, such as confluence and termination, and their consequences on defining trusted access control policies.
ISSN:1571-0661
1571-0661
DOI:10.1016/j.entcs.2007.02.055