Constraints are an integral part of access control policies. Depending upon their time of enforcement, they are categorized as static or dynamic; static constraints are enforced during the policy compilation time, and the dynamic constraints are enforced during run time. While there are several logic-based access control policy frameworks, they have a limited power in expressing and enforcing constraints (especially the dynamic constraints). We propose dynFAF, a constraint logic programming based approach for expressing and enforcing constraints. To make it more concrete, we present our approach as an extension to the flexible authorization framework (FAF) of Jajodia et al. [17]. We show that dynFAF satisfies standard safety and liveliness properties of a safety conscious software system. © Springer-Verlag Berlin Heidelberg 2004.
CITATION STYLE
Chen, S., Wijesekera, D., & Jajodia, S. (2004). Incorporating dynamic constraints in the flexible authorization framework. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 3193, 1–16. https://doi.org/10.1007/978-3-540-30108-0_1
Mendeley helps you to discover research relevant for your work.