On generalized authorization problems

Stefan Schwoon, Somesh Jha, Thomas Reps, and Stuart Stubblebine.

In 16th IEEE Computer Security Foundations Workshop (CSFW).

Pacific Grove, California, June/July 2003.

This paper defines a framework in which one can formalize a variety of authorization and policy issues that arise in access control of shared computing resources. Instantiations of the framework address such issues as privacy, recency, validity, and trust. The paper presents an efficient algorithm for solving all authorization problems in the framework; this approach yields new algorithms for a number of specific authorization problems.

Paper: [pdf] [ps]
Slides: [ppt]

This page updated October 14, 2005.