@prefix prodottidellaricerca: . @prefix istituto: . @prefix prodotto: . istituto:CDS044 prodottidellaricerca:prodotto prodotto:ID223074 . @prefix pubblicazioni: . @prefix unitaDiPersonaleEsterno: . unitaDiPersonaleEsterno:ID18934 pubblicazioni:autoreCNRDi prodotto:ID223074 . @prefix modulo: . modulo:ID2828 prodottidellaricerca:prodotto prodotto:ID223074 . @prefix rdf: . @prefix retescientifica: . prodotto:ID223074 rdf:type retescientifica:ProdottoDellaRicerca , prodotto:TIPO1301 . @prefix rdfs: . prodotto:ID223074 rdfs:label "PTaCL: A Language for Attribute-Based Access Control in Open Systems (Contributo in atti di convegno)"@en . @prefix xsd: . prodotto:ID223074 pubblicazioni:anno "2012-01-01T00:00:00+01:00"^^xsd:gYear ; pubblicazioni:doi "10.1007/978-3-642-28641-4_21"^^xsd:string . @prefix skos: . prodotto:ID223074 skos:altLabel "
Jason Crampton, Charles Morisset (2012)
PTaCL: A Language for Attribute-Based Access Control in Open Systems
in 1st International Conference on Principles of Security and Trust, POST 2012, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2012, Tallinn; Estonia, 24 March 2012 through 1 April 2012
"^^rdf:HTML ; pubblicazioni:autori "Jason Crampton, Charles Morisset"^^xsd:string ; pubblicazioni:paginaInizio "390"^^xsd:string ; pubblicazioni:paginaFine "409"^^xsd:string ; pubblicazioni:altreInformazioni "ID_PUMA; /cnr.iit/2012-A2-034"^^xsd:string ; pubblicazioni:url "http://link.springer.com/chapter/10.1007%2F978-3-642-28641-4_21#"^^xsd:string ; pubblicazioni:titoloVolume "Principles of Security and Trust"^^xsd:string ; pubblicazioni:volumeInCollana "7215"^^xsd:string ; pubblicazioni:pagineTotali "20"^^xsd:string ; skos:note "Scopu"^^xsd:string ; pubblicazioni:affiliazioni "Royal Holloway, University of London; CNR-IIT, Pisa, Italy"^^xsd:string ; pubblicazioni:titolo "PTaCL: A Language for Attribute-Based Access Control in Open Systems"^^xsd:string ; pubblicazioni:isbn "978-3-642-28640-7"^^xsd:string ; prodottidellaricerca:abstract "Many languages and algebras have been proposed in recent years for the specification of authorization policies. For some proposals, such as XACML, the main motivation is to address real-world requirements, typically by providing a complex policy language with somewhat informal evaluation methods; others try to provide a greater degree of formality - particularly with respect to policy evaluation - but support far fewer features. In short, there are very few proposals that combine a rich set of language features with a well-defined semantics, and even fewer that do this for authorization policies for attribute-based access control in open environments. In this paper, we decompose the problem of policy specification into two distinct sub-languages: the policy target language (PTL) for target specification, which determines when a policy should be evaluated; and the policy composition language (PCL) for building more complex policies from existing ones. We define syntax and semantics for two such languages and demonstrate that they can be both simple and expressive. PTaCL, the language obtained by combining the features of these two sub-languages, supports the specification of a wide range of policies. However, the power of PTaCL means that it is possible to define policies that could produce unexpected results. We provide an analysis of how PTL should be restricted and how policies written in PCL should be evaluated to minimize the likelihood of undesirable results"@en . @prefix ns11: . prodotto:ID223074 pubblicazioni:editore ns11:ID12584 ; prodottidellaricerca:prodottoDi istituto:CDS044 , modulo:ID2828 ; pubblicazioni:autoreCNR unitaDiPersonaleEsterno:ID18934 . @prefix parolechiave: . prodotto:ID223074 parolechiave:insiemeDiParoleChiave . ns11:ID12584 pubblicazioni:editoreDi prodotto:ID223074 . parolechiave:insiemeDiParoleChiaveDi prodotto:ID223074 .