The Audit Logic: Policy Compliance in Distributed Systems

J.G. Cederquist, R.J. Corin, M.A.C. Dekker, Sandro Etalle, Jeremy den Hartog, Gabriele Lenzini

Research output: Book/ReportReportProfessional

44 Downloads (Pure)

Abstract

We present a distributed framework where agents can share data along with usage policies. We use an expressive policy language including conditions, obligations and delegation. Our framework also supports the possibility to refine policies. Policies are not enforced a-priori. Instead policy compliance is checked using an a-posteriri auditing approach. Policy compliance is shown by a (logical) proof that the authority can systematically check for validity. Tools for automatically checking and generating proofs are also part of the framework.
Original languageUndefined
Place of PublicationEnschede
PublisherCentre for Telematics and Information Technology (CTIT)
Number of pages14
Publication statusPublished - 2006

Publication series

NameCTIT Technical Report Series
PublisherCentre for Telematics and Information Technology, University of Twente
No.06-33
ISSN (Print)1381-3625

Keywords

  • METIS-237396
  • Access Control
  • Audit
  • Policy
  • EWI-2773
  • SCS-Cybersecurity
  • IR-65617
  • Privacy

Cite this

Cederquist, J. G., Corin, R. J., Dekker, M. A. C., Etalle, S., den Hartog, J., & Lenzini, G. (2006). The Audit Logic: Policy Compliance in Distributed Systems. (CTIT Technical Report Series; No. 06-33). Enschede: Centre for Telematics and Information Technology (CTIT).
Cederquist, J.G. ; Corin, R.J. ; Dekker, M.A.C. ; Etalle, Sandro ; den Hartog, Jeremy ; Lenzini, Gabriele. / The Audit Logic: Policy Compliance in Distributed Systems. Enschede : Centre for Telematics and Information Technology (CTIT), 2006. 14 p. (CTIT Technical Report Series; 06-33).
@book{18b5d11cab934eb7a59a8e016ac740cc,
title = "The Audit Logic: Policy Compliance in Distributed Systems",
abstract = "We present a distributed framework where agents can share data along with usage policies. We use an expressive policy language including conditions, obligations and delegation. Our framework also supports the possibility to refine policies. Policies are not enforced a-priori. Instead policy compliance is checked using an a-posteriri auditing approach. Policy compliance is shown by a (logical) proof that the authority can systematically check for validity. Tools for automatically checking and generating proofs are also part of the framework.",
keywords = "METIS-237396, Access Control, Audit, Policy, EWI-2773, SCS-Cybersecurity, IR-65617, Privacy",
author = "J.G. Cederquist and R.J. Corin and M.A.C. Dekker and Sandro Etalle and {den Hartog}, Jeremy and Gabriele Lenzini",
year = "2006",
language = "Undefined",
series = "CTIT Technical Report Series",
publisher = "Centre for Telematics and Information Technology (CTIT)",
number = "06-33",
address = "Netherlands",

}

Cederquist, JG, Corin, RJ, Dekker, MAC, Etalle, S, den Hartog, J & Lenzini, G 2006, The Audit Logic: Policy Compliance in Distributed Systems. CTIT Technical Report Series, no. 06-33, Centre for Telematics and Information Technology (CTIT), Enschede.

The Audit Logic: Policy Compliance in Distributed Systems. / Cederquist, J.G.; Corin, R.J.; Dekker, M.A.C.; Etalle, Sandro; den Hartog, Jeremy; Lenzini, Gabriele.

Enschede : Centre for Telematics and Information Technology (CTIT), 2006. 14 p. (CTIT Technical Report Series; No. 06-33).

Research output: Book/ReportReportProfessional

TY - BOOK

T1 - The Audit Logic: Policy Compliance in Distributed Systems

AU - Cederquist, J.G.

AU - Corin, R.J.

AU - Dekker, M.A.C.

AU - Etalle, Sandro

AU - den Hartog, Jeremy

AU - Lenzini, Gabriele

PY - 2006

Y1 - 2006

N2 - We present a distributed framework where agents can share data along with usage policies. We use an expressive policy language including conditions, obligations and delegation. Our framework also supports the possibility to refine policies. Policies are not enforced a-priori. Instead policy compliance is checked using an a-posteriri auditing approach. Policy compliance is shown by a (logical) proof that the authority can systematically check for validity. Tools for automatically checking and generating proofs are also part of the framework.

AB - We present a distributed framework where agents can share data along with usage policies. We use an expressive policy language including conditions, obligations and delegation. Our framework also supports the possibility to refine policies. Policies are not enforced a-priori. Instead policy compliance is checked using an a-posteriri auditing approach. Policy compliance is shown by a (logical) proof that the authority can systematically check for validity. Tools for automatically checking and generating proofs are also part of the framework.

KW - METIS-237396

KW - Access Control

KW - Audit

KW - Policy

KW - EWI-2773

KW - SCS-Cybersecurity

KW - IR-65617

KW - Privacy

M3 - Report

T3 - CTIT Technical Report Series

BT - The Audit Logic: Policy Compliance in Distributed Systems

PB - Centre for Telematics and Information Technology (CTIT)

CY - Enschede

ER -

Cederquist JG, Corin RJ, Dekker MAC, Etalle S, den Hartog J, Lenzini G. The Audit Logic: Policy Compliance in Distributed Systems. Enschede: Centre for Telematics and Information Technology (CTIT), 2006. 14 p. (CTIT Technical Report Series; 06-33).