An important issue in mobile computing systems is the administration of locationbased access control policies, particularly the mechanism for specification and enforcement of spatial constraints. Simplifying the administration of such policies requires a mechanism that supports both an intuitive and scalable spatial constraint specification and a flexible enforcement architecture. In this paper...

The XACML standard defines an XML based language for defining access control policies and a related processing model. Recent work aims to add delegation to XACML in order to express the right to administrate XACML policies within XACML itself. The delegation profile draft explains how to validate the right to issue a policy, but there are no provisions for removing a policy. This paper proposes...

The introduction of new network services, broad-band multi-media and advanced mobile communications imposes high requirements on ATM network management. In such an environment, an essential task of ATM management is to prevent faults and to support eecient resource allocation. The idea is to specify parameters, according to which the behaviour of the network is monitored, and to perform the nec...

Security and privacy have emerged as important issues owing to the proliferation of social networking site. Sharing and distribution of relationship-based information on social network sites can have a serious impact on an individual’s activity; moreover, it can exert a negative influence on the overall information society. To solve security and privacy issues of social networking, we introduce...

This paper is concerned with the stability of a class of robust and constrained optimal control laws for linear discrete-time systems subject to bounded state disturbances and arbitrary convex constraints on the states and inputs. The paper considers the class of feedback control policies parameterized as affine functions of the system state, calculation of which has recently been shown to be t...

The introduction of new network services, broad-band multi-media and advanced mobile communications imposes high requirements on ATM network management. In such an environment, an essential task of ATM management is to prevent faults and to support eecient resource allocation. The idea is to specify parameters, according to which the behaviour of the network is monitored, and to perform the nec...

Role-based access control (RBAC) is a powerful means for laying out and developing higher-level organizational policies such as separation of duty, and for simplifying the security management process. One of the important aspects of RBAC is authorization constraints that express such organizational policies. While RBAC has generated a great interest in the security community, organizations stil...

Information integrity policies are traditionally enforced by access control mechanisms that prevent unauthorized users from modifying data. However, access control does not provide end-to-end assurance of integrity. For that reason, integrity guarantees in the form of noninterference assertions have been proposed. Despite the appeals of such information-flow based approaches to integrity, that ...

From a software design perspective, access control policies are requirements that must be addressed in a design. For example, access control policies are constraints that determine the type of access authorized users have on information resources. In this paper, we show how one can formulate access control policies as a policy model, formulate an access control aspect model that enforces polici...

The management of the operations acting over distributed and virtual resources plays an important role for achieving the success of modern distributed applications. In this paper, we advocate a notion of resources as entities with their own local policies and containing their global interactive properties. We introduce a variant of π-calculus with primitives to declare, acquire and release reso...