The Consistency of an Access Control List

Li, Shou-peng; Wu, Shi-zhong; Guo, Tao

doi:10.1007/3-540-36159-6_31

Shou-peng Li⁶,
Shi-zhong Wu⁶ &
Tao Guo⁷

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2513))

Included in the following conference series:

International Conference on Information and Communications Security

829 Accesses

Abstract

This paper gives firstly an introduction about the consistency of an Access Control List (ACL). It uses triples or in other words, in three dimensions and their corresponding decisions to describe the access control rules, i.e. ACL entries. We present then and justify the mathematical definitions of an ACL and its related components and discuss its consistency, two theorems about the consistency of the ACL. Thirdly the paper discusses verification of the consistency of the ACL and a new method used to verify the consistency of the ACL derived from the theorems in use. The method obtained here is a theoretical approach. In the conclusion, we point out that in a practical system, verification of the consistency of the ACL is necessary and the method is an effective and efficient one, further measures should be taken and study should be continued to reduce the amount of computation needed to examine the consistency of the ACL.

Supported by the National Natural Science Foundation of China under Grant No.90104033.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

T. Ryutov and C. Neuman. Representation and Evaluation of Security Policies for Distributed System Services. In proceeding of the DARPA Information survivability conference Exposition, January 2000. Hilto Head, South Carolina.
Google Scholar
R. S. Sandhu and P. Samarati. Access control: principles and practice. IEEE Computer, 40–48, Sept 1994.
Google Scholar
S. M. Bellovin and W. R. Cheswick. Firewalls and Internet Security. Addison-Wesley Publishing Company, Inc., 1994.
Google Scholar
HONG Fan and FU Xiao-qing, Discrete Mathematics. Huazhong University of Science &Technology publishing company, 1995.
Google Scholar

Download references

Author information

Authors and Affiliations

Department of Mathematics, Sichuan University, Chengdu, China
Shou-peng Li & Shi-zhong Wu
Department of Computer Science & Technology, Huazhong University of Science and Technology, Wuhan, China
Tao Guo

Authors

Shou-peng Li
View author publications
You can also search for this author in PubMed Google Scholar
Shi-zhong Wu
View author publications
You can also search for this author in PubMed Google Scholar
Tao Guo
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Labs for Information Technology, 21 Heng Mui Keng Terrace, Singapore, 119613
Robert Deng , Feng Bao & Jianying Zhou , &
Engineering Research Center for Information Security Technology, Chinese Academy of Sciences, P.O. Box 8718, Beijing, 100080, China
Sihan Qing

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Li, Sp., Wu, Sz., Guo, T. (2002). The Consistency of an Access Control List. In: Deng, R., Bao, F., Zhou, J., Qing, S. (eds) Information and Communications Security. ICICS 2002. Lecture Notes in Computer Science, vol 2513. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-36159-6_31

Download citation

DOI: https://doi.org/10.1007/3-540-36159-6_31
Published: 16 December 2002
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-00164-5
Online ISBN: 978-3-540-36159-6
eBook Packages: Springer Book Archive

Publish with us

Policies and ethics