Link to the University of Pittsburgh Homepage
Link to the University Library System Homepage Link to the Contact Us Form

Effective trust management through a hybrid logical and relational approach

Lee, Adam J and Yu, Ting and Le Gall, Yann (2010) Effective trust management through a hybrid logical and relational approach. In: Proceedings of the 5th ACM Symposium on Information, Computer and Communications Security - ASIACCS '10. ACM, New York, 169 - 179. ISBN 978-1-60558-936-7

[img] Plain Text (licence)
Available under License : See the attached license file.

Download (1kB)

Abstract

Despite a plethora of recent research regarding trust management approaches to authorization, relatively little attention has been given to exactly how these technologies can be effectively deployed. In this paper, we investigate one way in which well-established logical trust management systems described in the literature can be deployed within enterprise environments. Specifically, we develop a framework within which logical trust management policies can be managed using a relational DBMS. We describe a correct and complete procedure for compiling CTM credentials into dynamic views within a database, and show how the resulting system can be used to perform role membership checks or to enumerate the members of a given role. We then propose a hybrid algorithm that leverages the logical ruleset and the underlying DBMS to efficiently enumerate the capabilities ascribed to a given user. We also present an evaluation of a prototype implementation of our framework that demonstrates the practicality of our approach. As CTM extends the RT family of trust management languages---which are representative of a large class of Datalog-based trust management systems---our work is likely generalizable to other trust management approaches.


Share

Citation/Export:
Social Networking:
Share |

Details

Item Type: Book Section
Status: Published
Creators/Authors:
CreatorsEmailPitt UsernameORCID
Lee, Adam Jadamlee@pitt.eduADAMLEE
Yu, Ting
Le Gall, Yann
Date: 2010
Date Type: Publication
Publisher: ACM
Place of Publication: New York
Page Range: 169 - 179
DOI or Unique Handle: 10.1145/1755688.1755710
Schools and Programs: Dietrich School of Arts and Sciences > Computer Science
Refereed: Yes
ISBN: 978-1-60558-936-7
Title of Book: Proceedings of the 5th ACM Symposium on Information, Computer and Communications Security - ASIACCS '10
Official URL: http://dx.doi.org/10.1145/1755688.1755710
Date Deposited: 05 Dec 2012 20:27
Last Modified: 25 Aug 2017 05:05
URI: http://d-scholarship.pitt.edu/id/eprint/16483

Metrics

Monthly Views for the past 3 years

Plum Analytics

Altmetric.com


Actions (login required)

View Item View Item