Roscheisen, Martin and Winograd, Terry (1996) A Communication Agreement Framework of Access Control. In: IEEE Symposium on Research in Security and Privacy..
We introduce a framework of access control which shifts the emphasis from the partici pants to their relationship. The framework is based on a communication model in which participants negotiate the mutually agreed-upon boundary conditions of their relation ship in compact "communication pacts," called "commpacts." Commpacts can be seen as a third fundamental type next to access-control lists (ACLs) and capabilities. We argue that in current networked environments characterized by multiple authorities and "trusted proxies," this model provides an encapsulation for interdependent authoriza tion policies, which reduces the negotiation complexity of general (user- and content- dependent) distributed access control and provides a clear user-conceptual metaphor; it also generalizes work in electronic contracting and embeds naturally into the existing and institutional legal infrastructure. The framework is intended to provide a language enabling a social mechanism of coordinated expectation.
|Item Type:||Conference or Workshop Item (Paper)|
|Additional Information:||Previous number = SIDL-WP-1995-0024|
|Subjects:||Computer Science > Digital Libraries|
|Related URLs:||Project Homepage||http://www-diglib.stanford.edu/diglib/pub/|
|Deposited By:||Import Account|
|Deposited On:||28 Oct 2001 16:00|
|Last Modified:||09 Dec 2008 09:32|
Repository Staff Only: item control page