A Type Discipline for Authorization in Distributed Systems

  title={A Type Discipline for Authorization in Distributed Systems},
  author={C{\'e}dric Fournet and Andrew D. Gordon and Sergio Maffeis},
  journal={20th IEEE Computer Security Foundations Symposium (CSF'07)},
We consider the problem of statically verifying the conformance of the code of a system to an explicit authorization policy. In a distributed setting, some part of the system may be compromised, that is, some nodes of the system and their security credentials may be under the control of an attacker. To help predict and bound the impact of such partial compromise, we advocate logic-based policies that explicitly record dependencies between principals. We propose a conformance criterion, safety… CONTINUE READING
Highly Influential
This paper has highly influenced 10 other papers. REVIEW HIGHLY INFLUENTIAL CITATIONS
Highly Cited
This paper has 75 citations. REVIEW CITATIONS


Publications citing this paper.
Showing 1-10 of 51 extracted citations

75 Citations

Citations per Year
Semantic Scholar estimates that this publication has 75 citations based on the available data.

See our FAQ for additional information.

Similar Papers

Loading similar papers…