ENSURING INTEGRITY BY ADDING OBLIGATIONS TO PRIVILEGES.

Naftaly Minsky, Abe D. Lockman

Research output: Chapter in Book/Report/Conference proceedingConference contribution

36 Citations (Scopus)

Abstract

Conventional authorization mechanisms provide actors with permissions to act, without the actor ever incurring any obligations as a result of executing the permitted action. There exist, however, many situations where system integrity requires that certain actions always be followed by others, within some reasonable time frame. The authors propose an extension to conventional authorization which allows the explicit association of obligations with permissions, and enforces them. It is demonstrated that the extended mechanism can be used to support and enforce several general types of control policies and integrity constraints which are otherwise difficult or impossible to support.

Original languageEnglish (US)
Title of host publicationProceedings - International Conference on Software Engineering
PublisherIEEE
Pages92-102
Number of pages11
ISBN (Print)0818606207
StatePublished - Dec 1 1985

All Science Journal Classification (ASJC) codes

  • Software

Cite this

Minsky, N., & Lockman, A. D. (1985). ENSURING INTEGRITY BY ADDING OBLIGATIONS TO PRIVILEGES. In Proceedings - International Conference on Software Engineering (pp. 92-102). IEEE.
Minsky, Naftaly ; Lockman, Abe D. / ENSURING INTEGRITY BY ADDING OBLIGATIONS TO PRIVILEGES. Proceedings - International Conference on Software Engineering. IEEE, 1985. pp. 92-102
@inproceedings{6ec6076e76284a6496c52624165e47b3,
title = "ENSURING INTEGRITY BY ADDING OBLIGATIONS TO PRIVILEGES.",
abstract = "Conventional authorization mechanisms provide actors with permissions to act, without the actor ever incurring any obligations as a result of executing the permitted action. There exist, however, many situations where system integrity requires that certain actions always be followed by others, within some reasonable time frame. The authors propose an extension to conventional authorization which allows the explicit association of obligations with permissions, and enforces them. It is demonstrated that the extended mechanism can be used to support and enforce several general types of control policies and integrity constraints which are otherwise difficult or impossible to support.",
author = "Naftaly Minsky and Lockman, {Abe D.}",
year = "1985",
month = "12",
day = "1",
language = "English (US)",
isbn = "0818606207",
pages = "92--102",
booktitle = "Proceedings - International Conference on Software Engineering",
publisher = "IEEE",

}

Minsky, N & Lockman, AD 1985, ENSURING INTEGRITY BY ADDING OBLIGATIONS TO PRIVILEGES. in Proceedings - International Conference on Software Engineering. IEEE, pp. 92-102.

ENSURING INTEGRITY BY ADDING OBLIGATIONS TO PRIVILEGES. / Minsky, Naftaly; Lockman, Abe D.

Proceedings - International Conference on Software Engineering. IEEE, 1985. p. 92-102.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - ENSURING INTEGRITY BY ADDING OBLIGATIONS TO PRIVILEGES.

AU - Minsky, Naftaly

AU - Lockman, Abe D.

PY - 1985/12/1

Y1 - 1985/12/1

N2 - Conventional authorization mechanisms provide actors with permissions to act, without the actor ever incurring any obligations as a result of executing the permitted action. There exist, however, many situations where system integrity requires that certain actions always be followed by others, within some reasonable time frame. The authors propose an extension to conventional authorization which allows the explicit association of obligations with permissions, and enforces them. It is demonstrated that the extended mechanism can be used to support and enforce several general types of control policies and integrity constraints which are otherwise difficult or impossible to support.

AB - Conventional authorization mechanisms provide actors with permissions to act, without the actor ever incurring any obligations as a result of executing the permitted action. There exist, however, many situations where system integrity requires that certain actions always be followed by others, within some reasonable time frame. The authors propose an extension to conventional authorization which allows the explicit association of obligations with permissions, and enforces them. It is demonstrated that the extended mechanism can be used to support and enforce several general types of control policies and integrity constraints which are otherwise difficult or impossible to support.

UR - http://www.scopus.com/inward/record.url?scp=0022334918&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0022334918&partnerID=8YFLogxK

M3 - Conference contribution

SN - 0818606207

SP - 92

EP - 102

BT - Proceedings - International Conference on Software Engineering

PB - IEEE

ER -

Minsky N, Lockman AD. ENSURING INTEGRITY BY ADDING OBLIGATIONS TO PRIVILEGES. In Proceedings - International Conference on Software Engineering. IEEE. 1985. p. 92-102