Skip to main content
Electronic Proceedings in Theoretical Computer Science, EPTCSVolume 203, 10 February 2016, Pages 73-848th International Workshop on Programming Language Approaches to Concurrency- and Communication-cEntric Software, PLACES 2015; London; United Kingdom; 18 April 2015 through ; Code 123993

A typed model for dynamic authorizations(Conference Paper)(Open Access)

  • Ghilezan, S.,
  • Jakšić, S.,
  • Pantović, J.,
  • Pérez, J.A.,
  • Vieira, H.T.
  Save all to author list
  • aUniversity of Novi Sad, Serbia
  • bUniversity of Groningen, Netherlands
  • cIMT Institute for Advanced Studies Lucca, Italy

Abstract

Security requirements in distributed software systems are inherently dynamic. In the case of authorization policies, resources are meant to be accessed only by authorized parties, but the authorization to access a resource may be dynamically granted/yielded. We describe ongoing work on a model for specifying communication and dynamic authorization handling. We build upon the π-calculus so as to enrich communication-based systems with authorization specification and delegation; here authorizations regard channel usage and delegation refers to the act of yielding an authorization to another party. Our model includes: (i) a novel scoping construct for authorization, which allows to specify authorization boundaries, and (ii) communication primitives for authorizations, which allow to pass around authorizations to act on a given channel. An authorization error may consist in, e.g., performing an action along a name which is not under an appropriate authorization scope. We introduce a typing discipline that ensures that processes never reduce to authorization errors, even when authorizations are dynamically delegated. © Ghilezan, Jakšić, Pantović, Pérez, Vieira.

Indexed keywords

Engineering controlled terms:Calculations
Engineering uncontrolled termsAuthorization policyChannel usagesCommunication primitivesCommunication-based systemsDistributed software systemPi calculusScopingSecurity requirements
Engineering main heading:Computer programming languages

Funding details

Funding sponsor Funding number Acronym
European Cooperation in Science and TechnologyCOST
Universidade Nova de LisboaUNL
NOVA Laboratory for Computer Science and InformaticsNOVA LINCS

  • 1

    We thank the anonymous referees for their insightful and useful remarks. This work was supported by COST Action IC1201: Behavioural Types for Reliable Large-Scale Software Systems (BETTY) via Short-Term Scientific Mission grants (to Pantović and Vieira). Pérez is also affiliated to the NOVA Laboratory for Computer Science and Informatics (NOVA LINCS), Universidade Nova de Lisboa, Portugal.

  • ISSN: 20752180
  • Source Type: Conference Proceeding
  • Original language: English
  • DOI: 10.4204/EPTCS.203.6
  • Document Type: Conference Paper
  • Volume Editors: Gay S.,Alglave J.
  • Sponsors:
  • Publisher: Open Publishing Association


© Copyright 2017 Elsevier B.V., All rights reserved.

Cited by 2 documents

Prokić, I. , Pantović, J. , Vieira, H.T.
A calculus for modeling floating authorizations
(2019) Journal of Logical and Algebraic Methods in Programming
Ghilezan, S. , Jakšić, S. , Pantović, J.
Dynamic role authorization in multiparty conversations
(2016) Formal Aspects of Computing
View details of all 2 citations
Inform me when this document is cited in Scopus:
Set citation alert Set citation feed
{"topic":{"name":"Type Systems; Message Passing; Concurrency","id":3580,"uri":"Topic/3580","prominencePercentile":80.39584,"prominencePercentileString":"80.396","overallScholarlyOutput":0},"dig":"478d48951bfaed4bd2f4efb4a8a9c75338fd0721a905a580bf5625a50ac61f4d"}

SciVal Topic Prominence

Topic:
Prominence percentile: