The Audit Logic: Policy Compliance in Distributed Systems

J.G. Cederquist, R.J. Corin, M.A.C. Dekker, Sandro Etalle, Jeremy den Hartog, Gabriele Lenzini

    Research output: Book/ReportReportProfessional

    50 Downloads (Pure)

    Abstract

    We present a distributed framework where agents can share data along with usage policies. We use an expressive policy language including conditions, obligations and delegation. Our framework also supports the possibility to refine policies. Policies are not enforced a-priori. Instead policy compliance is checked using an a-posteriri auditing approach. Policy compliance is shown by a (logical) proof that the authority can systematically check for validity. Tools for automatically checking and generating proofs are also part of the framework.
    Original languageUndefined
    Place of PublicationEnschede
    PublisherCentre for Telematics and Information Technology (CTIT)
    Number of pages14
    Publication statusPublished - 2006

    Publication series

    NameCTIT Technical Report Series
    PublisherCentre for Telematics and Information Technology, University of Twente
    No.06-33
    ISSN (Print)1381-3625

    Keywords

    • METIS-237396
    • Access Control
    • Audit
    • Policy
    • EWI-2773
    • SCS-Cybersecurity
    • IR-65617
    • Privacy

    Cite this

    Cederquist, J. G., Corin, R. J., Dekker, M. A. C., Etalle, S., den Hartog, J., & Lenzini, G. (2006). The Audit Logic: Policy Compliance in Distributed Systems. (CTIT Technical Report Series; No. 06-33). Enschede: Centre for Telematics and Information Technology (CTIT).