On Designing Usable Policy Languages for Declarative Trust Aggregation
نویسندگان
چکیده
We argue that there will be an increasing future need for the design and implementation of declarative languages that can aggregate trust evidence and therefore inform the decision making of IT systems at run-time. We first present requirements for such languages. Then we discuss an instance of such a language, Peal, which extends an early prototype Peal that was researched by others in collaboration with us. Next, we formulate the intuitive semantics of Peal, present a simple use case of it, and evaluate to what extent Peal meets our formulated requirements. In this evaluation, particular attention is given to the usability aspects of declarative languages that mean to aggregate trust evidence.
منابع مشابه
Exporting Permissions to Hana: Declarative Approach
Jakub Sendor: is a research associate working in the Security & Trust research practice at SAP Labs France in Sophia-Antipolis. He is involved in the prototypes development initiatives around declarative authorization policies as well as working in A4Cloud (Accountability for Cloud) EU publicly funded project. His main interest comprise of cloud computing, dynamic programming languages and ente...
متن کاملA Framework for Concrete Reputation-Systems
In a reputation-based trust-management system, agents maintain information about the past behaviour of other agents. This information is used to guide future trust-based decisions about interaction. However, while trust management is a component in security decision-making, few existing reputation-based trustmanagement systems aim to provide any formal security-guarantees. We describe a mathema...
متن کاملEfficient Probabilistic Programming Languages
In recent years, declarative programming languages specialized for probabilistic modeling has emerged as distinct class of languages. These languages are predominantly written by researchers in the machine learning field and concentrate on generalized MCMC inference algorithm. Unfortunately, all these languages are too slow for practical adoption. In my talk, I will outline several places where...
متن کاملA Review of Trust Management, Security and Privacy Policy Languages
Policies are a well-known approach to protecting security and privacy of users as well as for flexible trust management in distributed environments. In the last years a number of policy languages were proposed to address different application scenarios. In order to help both developers and users in choosing the language best suiting her needs, policy language comparisons were proposed in the li...
متن کاملSecure Authorization for Federated Environments ( SAFE ) Overview and Progress Report
SAFE is an example of declarative trust management. Principals use a declarative language to make statements about one another and about objects in the system. These statements are secure assertions: they are authenticated and the source (speaker) of every statement is tracked. Principals reason from these statements according to policy rules, which are also written in the declarative language....
متن کامل