Conferences in Research and Practice in Information Technology
  

Online Version - Last Updated - 20 Jan 2012

 

 
Home
 

 
Procedures and Resources for Authors

 
Information and Resources for Volume Editors
 

 
Orders and Subscriptions
 

 
Published Articles

 
Upcoming Volumes
 

 
Contact Us
 

 
Useful External Links
 

 
CRPIT Site Search
 
    

A Modal Logic for Information System Security

Bai, Y. and Khan, K.

    As a security mechanism, authorization or access control ensures that all accesses to the system resources occur exclusively according to the access polices and rules specified by the system security agent. Authorization specification has been extensively studied and a variety of approaches have been investigated. In this paper, we propose a knowledge oriented formal language to specify the system security policies and their reasoning in response to system resource access request. The semantics of our language is provided by translating our language into epistemic logic pro- gram in which knowledge related modal operators are employed to represent agents’ knowledge in reasoning. We demonstrate how our authorization language handles the situation where the security agent’s knowledge on access decision is incomplete.
Cite as: Bai, Y. and Khan, K. (2011). A Modal Logic for Information System Security. In Proc. Australasian Information Security Conference (AISC 2011) Perth, Australia. CRPIT, 116. Colin Boyd and Josef Pieprzyk Eds., ACS. 51-56
pdf (from crpit.com) pdf (local if available) BibTeX EndNote GS