An algebraic basis for specifying and enforcing access
control in security systems
Pahl, ClausORCID: 0000-0002-9049-212X
(2000)
An algebraic basis for specifying and enforcing access
control in security systems.
In: The 4th Irish Workshop on Formal Methods, July 2000, Maynooth, Ireland.
Security services in a multi-user environment are often based on access control mechanisms. Static aspects of an access control policy can be formalised using abstract algebraic models. We integrate these static aspects into a dynamic framework considering requesting access to resources as a process aiming at the prevention of access control violations when a program is executed. We use another algebraic technique, monads, as a meta-language to integrate access control operations into a functional
programming language. The integration of monads and concepts from a denotational model for process algebras provides a framework for programming of access control in security systems.