Delegation logic: A logic-based approach to distributed authorization
We address the problem of authorization in large, open, distributed systems. Authorization decisions are needed in electronic commerce, mobile-code execution, remote resource sharing, content advising, and privacy protection, etc. We adopt the trust management approach, in which the “authorization”...
Uložené v:
| Hlavný autor: | |
|---|---|
| Médium: | Dissertation |
| Jazyk: | English |
| Vydavateľské údaje: |
ProQuest Dissertations & Theses
01.01.2000
|
| Predmet: | |
| ISBN: | 9780599916135, 0599916133 |
| On-line prístup: | Získať plný text |
| Tagy: |
Pridať tag
Žiadne tagy, Buďte prvý, kto otaguje tento záznam!
|
| Abstract | We address the problem of authorization in large, open, distributed systems. Authorization decisions are needed in electronic commerce, mobile-code execution, remote resource sharing, content advising, and privacy protection, etc. We adopt the trust management approach, in which the “authorization” problem is viewed as a “proof-of-compliance” problem: whether a set of credentials prove that a request complies with a policy. We develop a logic-based language Delegation Logic (DL) to represent policies, credentials, and requests in distributed authorization. Delegation Logic extends logic programming (LP) languages with expressive delegation constructs that feature delegation depth and a wide variety of complex principals (including but not limited to k-out-of-n thresholds). D1LP, the monotonic version of DL, extends the LP language Datalog with delegation constructs. D2LP, the nonmonotonic version of DL, also features classical negation, negation-as-failure, and prioritized conflict handling. Our approach to defining and implementing DL is based on tractably compiling DL programs into ordinary logic programs (OLP's). This compilation approach enables DL to be implemented modularly on top of existing technologies for OLP, e.g., Prolog. As a trust-management language, Delegation Logic provides a concept of proof-of-compliance that is founded on well-understood principles of logic programming and knowledge representation. DL also provides a logical framework in which one can study delegation, negation of authority, conflicts between authorities, and their interplay. |
|---|---|
| AbstractList | We address the problem of authorization in large, open, distributed systems. Authorization decisions are needed in electronic commerce, mobile-code execution, remote resource sharing, content advising, and privacy protection, etc. We adopt the trust management approach, in which the “authorization” problem is viewed as a “proof-of-compliance” problem: whether a set of credentials prove that a request complies with a policy. We develop a logic-based language Delegation Logic (DL) to represent policies, credentials, and requests in distributed authorization. Delegation Logic extends logic programming (LP) languages with expressive delegation constructs that feature delegation depth and a wide variety of complex principals (including but not limited to k-out-of-n thresholds). D1LP, the monotonic version of DL, extends the LP language Datalog with delegation constructs. D2LP, the nonmonotonic version of DL, also features classical negation, negation-as-failure, and prioritized conflict handling. Our approach to defining and implementing DL is based on tractably compiling DL programs into ordinary logic programs (OLP's). This compilation approach enables DL to be implemented modularly on top of existing technologies for OLP, e.g., Prolog. As a trust-management language, Delegation Logic provides a concept of proof-of-compliance that is founded on well-understood principles of logic programming and knowledge representation. DL also provides a logical framework in which one can study delegation, negation of authority, conflicts between authorities, and their interplay. |
| Author | Li, Ninghui |
| Author_xml | – sequence: 1 givenname: Ninghui surname: Li fullname: Li, Ninghui |
| BookMark | eNotjs1OwzAQhC0BElDyDhH3SP6LneVWlQKVKnHpvVrH69YQxSV2Ljw9hXKa0UjfzNyz6zGNdMUqsB1vAUAYodpbVuUcHefKgtWqu2PrZxrogCWmsR7SIfZP9fJiGoeZfI2n05SwP9Yl1T7mMkU3l998Lsc0xe8_9IHdBBwyVf-6YLuX9W711mzfXzer5bb51MY23qPlhps2ACFqERCQ0PrguQvgVZBSQu86A71EaDUJKb1wVrqgFJekFuzxUnu-9DVTLvuPNE_jeXGvuDa8E9yqH9SCShY |
| ContentType | Dissertation |
| Copyright | Database copyright ProQuest LLC; ProQuest does not claim copyright in the individual underlying works. |
| Copyright_xml | – notice: Database copyright ProQuest LLC; ProQuest does not claim copyright in the individual underlying works. |
| DBID | 053 0BH 0IW CBPLH EU9 G20 M8- PHGZT PKEHL PQEST PQQKQ PQUKI |
| DatabaseName | Dissertations & Theses Europe Full Text: Science & Technology ProQuest Dissertations and Theses Professional Dissertations & Theses @ New York University ProQuest Dissertations & Theses Global: The Sciences and Engineering Collection ProQuest Dissertations & Theses A&I ProQuest Dissertations & Theses Global ProQuest Dissertations and Theses A&I: The Sciences and Engineering Collection ProQuest One Academic ProQuest One Academic Middle East (New) ProQuest One Academic Eastern Edition (DO NOT USE) ProQuest One Academic (retired) ProQuest One Academic UKI Edition |
| DatabaseTitle | Dissertations & Theses Europe Full Text: Science & Technology Dissertations & Theses @ New York University ProQuest One Academic Middle East (New) ProQuest One Academic UKI Edition ProQuest One Academic Eastern Edition ProQuest Dissertations & Theses Global: The Sciences and Engineering Collection ProQuest Dissertations and Theses Professional ProQuest One Academic ProQuest Dissertations & Theses A&I ProQuest One Academic (New) ProQuest Dissertations and Theses A&I: The Sciences and Engineering Collection ProQuest Dissertations & Theses Global |
| DatabaseTitleList | Dissertations & Theses Europe Full Text: Science & Technology |
| Database_xml | – sequence: 1 dbid: G20 name: ProQuest Dissertations & Theses Global url: https://www.proquest.com/pqdtglobal1 sourceTypes: Aggregation Database |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Computer Science |
| ExternalDocumentID | 728352001 |
| Genre | Dissertation/Thesis |
| GroupedDBID | 053 0BH 0IW ACBYE ALMA_UNASSIGNED_HOLDINGS CBPLH EU9 G20 M8- PHGZT PKEHL PQEST PQQKQ PQUKI YSPEL |
| ID | FETCH-LOGICAL-k467-dda706065f9eaa41fa9aea7dfd0bf9d3f2229cb869c2a954e122d1b72bf3302e3 |
| IEDL.DBID | G20 |
| ISBN | 9780599916135 0599916133 |
| IngestDate | Sun Jun 29 16:54:46 EDT 2025 |
| IsPeerReviewed | false |
| IsScholarly | false |
| Language | English |
| LinkModel | DirectLink |
| MergedId | FETCHMERGED-LOGICAL-k467-dda706065f9eaa41fa9aea7dfd0bf9d3f2229cb869c2a954e122d1b72bf3302e3 |
| Notes | SourceType-Dissertations & Theses-1 ObjectType-Dissertation/Thesis-1 content type line 12 |
| PQID | 304608107 |
| PQPubID | 18750 |
| ParticipantIDs | proquest_journals_304608107 |
| PublicationCentury | 2000 |
| PublicationDate | 20000101 |
| PublicationDateYYYYMMDD | 2000-01-01 |
| PublicationDate_xml | – month: 01 year: 2000 text: 20000101 day: 01 |
| PublicationDecade | 2000 |
| PublicationYear | 2000 |
| Publisher | ProQuest Dissertations & Theses |
| Publisher_xml | – name: ProQuest Dissertations & Theses |
| SSID | ssib003797438 ssib046803453 ssib000933042 ssib014214332 |
| Score | 1.329534 |
| Snippet | We address the problem of authorization in large, open, distributed systems. Authorization decisions are needed in electronic commerce, mobile-code execution,... |
| SourceID | proquest |
| SourceType | Aggregation Database |
| SubjectTerms | Computer science |
| Title | Delegation logic: A logic-based approach to distributed authorization |
| URI | https://www.proquest.com/docview/304608107 |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| link | http://cvtisr.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwpV1LS8NAEB60ehAP9YlalT14XWySTXbXi4ht8SDFQ5HeSvaFIrS2Tf397mw2tiB48ZZkAyHDvL6dnfkAbiwvlC6kpNzHI8okY1RZwagtc-UNzEoW-tZen_lwKMZj-RLP5izjscrGJwZHbWYa98hvQwVPeLBy_zmnSBqFxdXIoLENO1zIPDA3bGY_NVhfqy_3yfNa3RKWJpvTu1ghuhnLs9DRGvImj9_ijJ7mPv_lskMcGrT_-QcHsN_bqL8fwpadHkG7YXYg0dCPod9DOorwEgnO8Y481BcUw54hzShyUs2Iwdm7SJuFz1fVm_9o3dt5AqNBf_T4RCPhAv1Af2lMibN0itxJW5YscTi5u-TGma5y0mQOub-1EoXUaSlzZpM0NYniqXJe0KnNTqE1nU3tGRBR6MIpYT1ayhChCi2Mx-HWcCO0VfIcOo2MJtFolpMfAV38udqBvbofHvdBLqFVLVb2Cnb1V_W-XFwHFfgGqdq2JQ |
| linkProvider | ProQuest |
| linkToHtml | http://cvtisr.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMw1V1LSwMxEB5qFRQP9YlaHznocbGbzeYhiIhtbWktHor0VjabLIrQartV_E_-SJPsri0I3jx42xcLyUxm8k1m5gM41YzKmArhMeOPPCII8aTmxNNRKM0C04K4urWHLuv1-GAg7kvwWdTC2LTKwiY6Q63GsY2Rn7sTPG7AytXLq2dJo-zhasGgkWlFR3-8G8Q2vWzXjXjPMG42-jctLycV8J6tTVAqsv1iaJgIHUXET2x36oipRNVkIlSQWH7rWHIqYhyJkGgfY-VLhmVikD_WgfntEiyTgPk2gfB2cbOVxQbmq4WZvfpcu32C_cVmYYTyWkDCwBXQum2agYt5S6DiPvzhIZzba1b-14RtwHp9IbtgE0p6tAWVgrcC5WZsGxp1S7bhPkLO9F-g6-zCs05doaLROkrHSNnOwpYUzD6fpY9mjFnl6g70_2Igu1AejUd6DxCnMU0k1wYLBhZ_85grKmpaMcVjLcU-VAuRDHOTMB1-y-Pg17cnsNrq33WH3XavU4W1rPLfRnwOoZxOZvoIVuK39Gk6OXbah2D4x8L7AhAOFDU |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Adissertation&rft.genre=dissertation&rft.title=Delegation+logic%3A+A+logic-based+approach+to+distributed+authorization&rft.DBID=053%3B0BH%3B0IW%3BCBPLH%3BEU9%3BG20%3BM8-%3BPHGZT%3BPKEHL%3BPQEST%3BPQQKQ%3BPQUKI&rft.PQPubID=18750&rft.au=Li%2C+Ninghui&rft.date=2000-01-01&rft.pub=ProQuest+Dissertations+%26+Theses&rft.isbn=9780599916135&rft.externalDBID=HAS_PDF_LINK&rft.externalDocID=728352001 |
| thumbnail_l | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=9780599916135/lc.gif&client=summon&freeimage=true |
| thumbnail_m | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=9780599916135/mc.gif&client=summon&freeimage=true |
| thumbnail_s | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=9780599916135/sc.gif&client=summon&freeimage=true |