TY - GEN
T1 - ENSURING INTEGRITY BY ADDING OBLIGATIONS TO PRIVILEGES.
AU - Minsky, Naftaly H.
AU - Lockman, Abe D.
PY - 1985
Y1 - 1985
N2 - Conventional authorization mechanisms provide actors with permissions to act, without the actor ever incurring any obligations as a result of executing the permitted action. There exist, however, many situations where system integrity requires that certain actions always be followed by others, within some reasonable time frame. The authors propose an extension to conventional authorization which allows the explicit association of obligations with permissions, and enforces them. It is demonstrated that the extended mechanism can be used to support and enforce several general types of control policies and integrity constraints which are otherwise difficult or impossible to support.
AB - Conventional authorization mechanisms provide actors with permissions to act, without the actor ever incurring any obligations as a result of executing the permitted action. There exist, however, many situations where system integrity requires that certain actions always be followed by others, within some reasonable time frame. The authors propose an extension to conventional authorization which allows the explicit association of obligations with permissions, and enforces them. It is demonstrated that the extended mechanism can be used to support and enforce several general types of control policies and integrity constraints which are otherwise difficult or impossible to support.
UR - http://www.scopus.com/inward/record.url?scp=0022334918&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=0022334918&partnerID=8YFLogxK
M3 - Conference contribution
AN - SCOPUS:0022334918
SN - 0818606207
T3 - Proceedings - International Conference on Software Engineering
SP - 92
EP - 102
BT - Proceedings - International Conference on Software Engineering
PB - IEEE
ER -