We introduce a capability-based accesscontrol model integrated into a linguistic formalism for modeling network aware systems and applications. Our access control model enables specification and dynamic modification of policies for controlling process activities (mobility of code and access to resources). We exploit a combination of static and dynamic checking and of in-lined reference monitoring to guarantee absence of run-time errors due to lack of capabilities. We illustrate the usefulness of our framework by using it for implementing a simplified but realistic scenario. Finally, we show how the model can be easily tailored for dealing with different forms of capability acquisition and loss, thus enabling different possible variations of...
Abstract. The modelling of access control rules in terms of high-level policies has been subject of ...
Access control systems are deployed in organizations to pro-tect critical cyber-physical assets. The...
Access control is fundamental and prerequisite to govern and safeguard information assets within an ...
AbstractWe introduce a capability-based access control model integrated into a linguistic formalism ...
Abstract—In capability-safe languages, components can access a resource only if they possess a capab...
Abstract—Recently, dynamic access control models are pro-posed to restrict access domain appropriate...
µKlaim is a process language that permits programming distributed systems made up of several mobile ...
We investigate the cost of changing access control policies dynamically as a response action in comp...
International audienceSince its formalization RBAC has become the yardstick for the evaluation of ac...
Abstract. µKlaim is a process language that permits programming distributed systems made up of sever...
International audienceNowadays, accessing communication networks and systems faces multitude applica...
Abstract. We present a formal system that models programmable abstractions for access control. Compo...
We present a formal system that models programmable abstractions for access control. Composite abstr...
International audienceThis paper addresses the consistency of initially heterogeneous access control...
Abstract. Access-control policies have grown from simple matrices to non-trivial specifications writ...
Abstract. The modelling of access control rules in terms of high-level policies has been subject of ...
Access control systems are deployed in organizations to pro-tect critical cyber-physical assets. The...
Access control is fundamental and prerequisite to govern and safeguard information assets within an ...
AbstractWe introduce a capability-based access control model integrated into a linguistic formalism ...
Abstract—In capability-safe languages, components can access a resource only if they possess a capab...
Abstract—Recently, dynamic access control models are pro-posed to restrict access domain appropriate...
µKlaim is a process language that permits programming distributed systems made up of several mobile ...
We investigate the cost of changing access control policies dynamically as a response action in comp...
International audienceSince its formalization RBAC has become the yardstick for the evaluation of ac...
Abstract. µKlaim is a process language that permits programming distributed systems made up of sever...
International audienceNowadays, accessing communication networks and systems faces multitude applica...
Abstract. We present a formal system that models programmable abstractions for access control. Compo...
We present a formal system that models programmable abstractions for access control. Composite abstr...
International audienceThis paper addresses the consistency of initially heterogeneous access control...
Abstract. Access-control policies have grown from simple matrices to non-trivial specifications writ...
Abstract. The modelling of access control rules in terms of high-level policies has been subject of ...
Access control systems are deployed in organizations to pro-tect critical cyber-physical assets. The...
Access control is fundamental and prerequisite to govern and safeguard information assets within an ...