CMU-CS-09-139
Computer Science Department
School of Computer Science, Carnegie Mellon University



CMU-CS-09-139

A Logical Representation of Common Rules for
Controlling Access to Classified Information

Deepak Garg, Frank Pfenning
Denis Serenyi*, Brian Witten*

June 2009

CMU-CS-09-139.pdf


Keywords: Access control, policy, logic, classified information

Official policies for controlling access to classified information in the U.S. are quite complex and often difficult to enforce. We present an encoding of a common core of these policies in an authorization logic, and describe their rigorous enforcement in PCFS, a file system implemented for such purposes.

24 pages

*Symantec Corporation


Return to: SCS Technical Report Collection
School of Computer Science

This page maintained by reports@cs.cmu.edu