Policies, Models, and Languages for Access Control

Access control is the process of mediating every request to data and services maintained by a system and determining whether the request should be granted or denied. Expressiveness and flexibility are top requirements for an access control system together with, and usually in conflict with, simplicity and e#ciency. In this paper, we discuss the main desiderata for access control systems and illustrate the main characteristics of access control solutions