Advanced Policy Queries

@inproceedings{Bonatti2005AdvancedPQ,
  title={Advanced Policy Queries},
  author={Piero A. Bonatti and Daniel Olmedilla and Joachim Peer},
  year={2005}
}
We argue that policy-aware systems can be effective only if: (i) common users—with no training in computer science or logic—become aware of the policy applied by their system; (ii) common users can personalize those policies; (iii) secure systems guide the user in getting the required permissions (cooperative enforcement). Towards this end, we introduce a mechanism for answering why, why-not, how-to, and what-if queries. Our framework is lightweight and scalable because it does not require any… CONTINUE READING