Chapter

Computer Security – ESORICS 2009

Volume 5789 of the series Lecture Notes in Computer Science pp 152-167

Towards a Theory of Accountability and Audit

  • Radha JagadeesanAffiliated withLancaster UniversitySchool of Computing, DePaul University
  • , Alan JeffreyAffiliated withLancaster UniversityBell Labs, Alcatel–Lucent
  • , Corin PitcherAffiliated withLancaster UniversitySchool of Computing, DePaul University
  • , James RielyAffiliated withLancaster UniversitySchool of Computing, DePaul University

* Final gross prices may vary according to local VAT.

Get Access

Abstract

Accountability mechanisms, which rely on after-the-fact verification, are an attractive means to enforce authorization policies. In this paper, we describe an operational model of accountability-based distributed systems. We describe analyses which support both the design of accountability systems and the validation of auditors for finitary accountability systems. Our study provides formal foundations to explore the tradeoffs underlying the design of accountability systems including: the power of the auditor, the efficiency of the audit protocol, the requirements placed on the agents, and the requirements placed on the communication infrastructure.