Thumbnail
Access Restriction
Open

Author Li, Ninghui ♦ Mitchell, John C.
Source CiteSeerX
Content type Text
Publisher Springer-Verlag
File Format PDF
Language English
Subject Domain (in DDC) Computer science, information & general works ♦ Data processing & computer science
Subject Keyword Structured Resource ♦ Distributed System ♦ Trust Management ♦ Distributed Policy Statement ♦ Different Kind ♦ Promising Approach ♦ Trust Management Language ♦ Policy Language ♦ Constraint Domain ♦ Constraint Datalog ♦ Tm System ♦ Different Computational Complexity Requirement ♦ Several Tm Language ♦ Constraint Database ♦ Fine-grained Control ♦ Linearly Decomposable Unary Constraint Domain ♦ Access Control ♦ Tm Application ♦ Concrete Declarative Tm Language ♦ Significant Respect
Description Trust management (TM) is a promising approach for authorization and access control in distributed systems, based on signed distributed policy statements expressed in a policy language. Although several TM languages are semantically equivalent to subsets of Datalog, Datalog is not sufficiently expressive for fine-grained control of structured resources. We define the class of linearly decomposable unary constraint domains, prove that Datalog extended with constraints in any combination of such constraint domains is tractable, and show that permissions associated with structured resources fall into this class. We also present a concrete declarative TM language, RT 1 , based on constraint Datalog, and use constraint Datalog to analyze another TM system, KeyNote, which turns out to be less expressive than RT 1 in significant respects, yet less tractable in the worst case. Although constraint Datalog has been studied in the context of constraint databases, TM applications involve different kinds of constraint domains and have different computational complexity requirements.
Educational Role Student ♦ Teacher
Age Range above 22 year
Educational Use Research
Education Level UG and PG ♦ Career/Technical Study
Learning Resource Type Article
Publisher Date 2003-01-01
Publisher Institution IN PADL ’03: PROCEEDINGS OF THE 5TH INTERNATIONAL SYMPOSIUM ON PRACTICAL ASPECTS OF DECLARATIVE LANGUAGES