Policy Evolution in Distributed Usage Control

A. Pretschner, F. Schütz, C. Schaefer, T. Walter

Research output: Contribution to journalArticlepeer-review

16 Scopus citations

Abstract

Usage control is a generalization of access control that also addresses how data is handled after it is released. Controlling the future usage of data includes controlling the future distribution of data. The evolution of policies upon re-distribution must hence be defined. Intuitively, clients should only strengthen policies associated with a data item when they re-distribute it. We provide a role-based re-distribution model for usage control that encompasses strengthening both rights and duties. By introducing orderings for events and parameter values we show how both rights and duties can be strengthened with the traditional abstraction of trace inclusion.

Original languageEnglish
Pages (from-to)109-123
Number of pages15
JournalElectronic Notes in Theoretical Computer Science
Volume244
DOIs
StatePublished - 1 Aug 2009
Externally publishedYes

Keywords

  • Usag control
  • access control

Fingerprint

Dive into the research topics of 'Policy Evolution in Distributed Usage Control'. Together they form a unique fingerprint.

Cite this