The Audit Logic: Policy Compliance in Distributed Systems

J.G. Cederquist, R.J. Corin, M.A.C. Dekker, Sandro Etalle, Jeremy den Hartog, Gabriele Lenzini

    Research output: Book/ReportReportProfessional

    45 Downloads (Pure)

    Abstract

    We present a distributed framework where agents can share data along with usage policies. We use an expressive policy language including conditions, obligations and delegation. Our framework also supports the possibility to refine policies. Policies are not enforced a-priori. Instead policy compliance is checked using an a-posteriri auditing approach. Policy compliance is shown by a (logical) proof that the authority can systematically check for validity. Tools for automatically checking and generating proofs are also part of the framework.
    Original languageUndefined
    Place of PublicationEnschede
    PublisherCentre for Telematics and Information Technology (CTIT)
    Number of pages14
    Publication statusPublished - 2006

    Publication series

    NameCTIT Technical Report Series
    PublisherCentre for Telematics and Information Technology, University of Twente
    No.06-33
    ISSN (Print)1381-3625

    Keywords

    • METIS-237396
    • Access Control
    • Audit
    • Policy
    • EWI-2773
    • SCS-Cybersecurity
    • IR-65617
    • Privacy

    Cite this

    Cederquist, J. G., Corin, R. J., Dekker, M. A. C., Etalle, S., den Hartog, J., & Lenzini, G. (2006). The Audit Logic: Policy Compliance in Distributed Systems. (CTIT Technical Report Series; No. 06-33). Enschede: Centre for Telematics and Information Technology (CTIT).
    Cederquist, J.G. ; Corin, R.J. ; Dekker, M.A.C. ; Etalle, Sandro ; den Hartog, Jeremy ; Lenzini, Gabriele. / The Audit Logic: Policy Compliance in Distributed Systems. Enschede : Centre for Telematics and Information Technology (CTIT), 2006. 14 p. (CTIT Technical Report Series; 06-33).
    @book{18b5d11cab934eb7a59a8e016ac740cc,
    title = "The Audit Logic: Policy Compliance in Distributed Systems",
    abstract = "We present a distributed framework where agents can share data along with usage policies. We use an expressive policy language including conditions, obligations and delegation. Our framework also supports the possibility to refine policies. Policies are not enforced a-priori. Instead policy compliance is checked using an a-posteriri auditing approach. Policy compliance is shown by a (logical) proof that the authority can systematically check for validity. Tools for automatically checking and generating proofs are also part of the framework.",
    keywords = "METIS-237396, Access Control, Audit, Policy, EWI-2773, SCS-Cybersecurity, IR-65617, Privacy",
    author = "J.G. Cederquist and R.J. Corin and M.A.C. Dekker and Sandro Etalle and {den Hartog}, Jeremy and Gabriele Lenzini",
    year = "2006",
    language = "Undefined",
    series = "CTIT Technical Report Series",
    publisher = "Centre for Telematics and Information Technology (CTIT)",
    number = "06-33",
    address = "Netherlands",

    }

    Cederquist, JG, Corin, RJ, Dekker, MAC, Etalle, S, den Hartog, J & Lenzini, G 2006, The Audit Logic: Policy Compliance in Distributed Systems. CTIT Technical Report Series, no. 06-33, Centre for Telematics and Information Technology (CTIT), Enschede.

    The Audit Logic: Policy Compliance in Distributed Systems. / Cederquist, J.G.; Corin, R.J.; Dekker, M.A.C.; Etalle, Sandro; den Hartog, Jeremy; Lenzini, Gabriele.

    Enschede : Centre for Telematics and Information Technology (CTIT), 2006. 14 p. (CTIT Technical Report Series; No. 06-33).

    Research output: Book/ReportReportProfessional

    TY - BOOK

    T1 - The Audit Logic: Policy Compliance in Distributed Systems

    AU - Cederquist, J.G.

    AU - Corin, R.J.

    AU - Dekker, M.A.C.

    AU - Etalle, Sandro

    AU - den Hartog, Jeremy

    AU - Lenzini, Gabriele

    PY - 2006

    Y1 - 2006

    N2 - We present a distributed framework where agents can share data along with usage policies. We use an expressive policy language including conditions, obligations and delegation. Our framework also supports the possibility to refine policies. Policies are not enforced a-priori. Instead policy compliance is checked using an a-posteriri auditing approach. Policy compliance is shown by a (logical) proof that the authority can systematically check for validity. Tools for automatically checking and generating proofs are also part of the framework.

    AB - We present a distributed framework where agents can share data along with usage policies. We use an expressive policy language including conditions, obligations and delegation. Our framework also supports the possibility to refine policies. Policies are not enforced a-priori. Instead policy compliance is checked using an a-posteriri auditing approach. Policy compliance is shown by a (logical) proof that the authority can systematically check for validity. Tools for automatically checking and generating proofs are also part of the framework.

    KW - METIS-237396

    KW - Access Control

    KW - Audit

    KW - Policy

    KW - EWI-2773

    KW - SCS-Cybersecurity

    KW - IR-65617

    KW - Privacy

    M3 - Report

    T3 - CTIT Technical Report Series

    BT - The Audit Logic: Policy Compliance in Distributed Systems

    PB - Centre for Telematics and Information Technology (CTIT)

    CY - Enschede

    ER -

    Cederquist JG, Corin RJ, Dekker MAC, Etalle S, den Hartog J, Lenzini G. The Audit Logic: Policy Compliance in Distributed Systems. Enschede: Centre for Telematics and Information Technology (CTIT), 2006. 14 p. (CTIT Technical Report Series; 06-33).