An Algebra for Integration and Analysis of Ponder2 Policies
Traditional policies often focus on access control requirement and there have been several proposals to define access control policy algebras to handle their compositions. Recently, obligations are increasingly being expressed as part of security policies. However, the compositions and interactions between these two have not yet been studied adequately. In this paper, we propose an algebra capturing both authorization and obligation policies. The algebra consists of two policy constants and six basic operations. It provides language independent mechanisms to manage policies. As a concrete example, we instantiate the algebra for the Ponder2 policy language.
- ponder_short.pdf application/pdf 145 KB Download File
Also Published In
More About This Work
- Academic Units
- Computer Science
- Published Here
- May 10, 2010
2008 IEEE International Workshop on Policies for Distributed Systems and Networks: POLICY 2008, 2-4 June 2008, Palisades, New York, USA: Proceedings (Los Alamitos, Calif.: IEEE Computer Society. 2008), pp. 74-77.