Chapter

Computer Security – ESORICS 2009

Volume 5789 of the series Lecture Notes in Computer Science pp 152-167

Towards a Theory of Accountability and Audit

  • Radha JagadeesanAffiliated withSchool of Computing, DePaul University
  • , Alan JeffreyAffiliated withBell Labs, Alcatel–Lucent
  • , Corin PitcherAffiliated withSchool of Computing, DePaul University
  • , James RielyAffiliated withSchool of Computing, DePaul University

* Final gross prices may vary according to local VAT.

Get Access

Abstract

Accountability mechanisms, which rely on after-the-fact verification, are an attractive means to enforce authorization policies. In this paper, we describe an operational model of accountability-based distributed systems. We describe analyses which support both the design of accountability systems and the validation of auditors for finitary accountability systems. Our study provides formal foundations to explore the tradeoffs underlying the design of accountability systems including: the power of the auditor, the efficiency of the audit protocol, the requirements placed on the agents, and the requirements placed on the communication infrastructure.