Computer Science Department
School of Computer Science, Carnegie Mellon University


A Logical Representation of Common Rules for
Controlling Access to Classified Information

Deepak Garg, Frank Pfenning
Denis Serenyi*, Brian Witten*

June 2009


Keywords: Access control, policy, logic, classified information

Official policies for controlling access to classified information in the U.S. are quite complex and often difficult to enforce. We present an encoding of a common core of these policies in an authorization logic, and describe their rigorous enforcement in PCFS, a file system implemented for such purposes.

24 pages

*Symantec Corporation

Return to: SCS Technical Report Collection
School of Computer Science

This page maintained by