Contractual access control

Sadighi, Babak and Sergot, Marek (2002) Contractual access control. In: Security Protcols, 10th International Workshop, 17-19 April 2002, Cambridge, UK.

Full text not available from this repository.


In this position paper we discuss the issue of enforcing access policies in distributed environments where there is no central system designer/administrator, and consequently no guarantee that policies will be properly implemented by all components of the system. We argue that existing access control models, which are based on the concepts of permission and prohibition, need to be extended with the concept of entitlement. Entitlement to access a resource means not only that the access is permitted but also that the controller of the resource is obliged to grant the access when it is requested. An obligation to grant the access however does not guarantee that it will be granted: agents are capable of violating their obligations. In the proposed approach we discuss a Community Regulation Server that not only reasons about access permissions and obligations, but also updates the normative state of a community according to the contractual performance of its interacting agents.

Item Type:Conference or Workshop Item (Paper)
ID Code:3004
Deposited On:14 Jul 2008
Last Modified:18 Nov 2009 16:17

Repository Staff Only: item control page