Chapter

Information Assurance in Computer Networks

Volume 2052 of the series Lecture Notes in Computer Science pp 189-207

Date:

The Set and Function Approach to Modeling Authorization in Distributed Systems

  • Tatyana RyutovAffiliated withInformation Sciences Institute University of Southern California
  • , Clifford NeumanAffiliated withInformation Sciences Institute University of Southern California

Abstract

We present a new model that provides clear and precise semantics for authorization. The semantics is independent from underling security mechanisms and is separate from implementation. The model is capable of representing existing access control mechanisms. Our approach is based on set and function formalism. We focus our attention on identifying issues and use our model as a general basis to investigate the issues.