Resource access management in modern ICT systems usually authorizes access to resources based on factors like identities, roles, and possibly attributes of the requester, the requested resource, and the environment. However, traditional approaches to access control do not fit well with collaborative scenarios where, typically, users can define their own policies allowing access to their resources provided that some conditions on the accessibility of other resources are met. In this paper, we introduce Bart, a language to specify attribute-based access policies for bartering resource access among the parties of a distributed system. Using Bart, each party can independently define policies to control access to their resources, including specific conditions that may require agreement with other parties to access additional resources. Subsequently, based on the policies currently in force within the system, the evaluation process – triggered on demand to determine whether an access request can be granted – automatically manages the bartering of resource access among policies.
On Policies for Bartering Access to Resources / Lorenzo Bettini, R.P.. - ELETTRONICO. - 3962:(2025), pp. 0-0. (Joint National Conference on Cybersecurity (ITASEC & SERICS 2025) ).
On Policies for Bartering Access to Resources
Lorenzo Bettini;Rosario Pugliese;Francesco Tiezzi
2025
Abstract
Resource access management in modern ICT systems usually authorizes access to resources based on factors like identities, roles, and possibly attributes of the requester, the requested resource, and the environment. However, traditional approaches to access control do not fit well with collaborative scenarios where, typically, users can define their own policies allowing access to their resources provided that some conditions on the accessibility of other resources are met. In this paper, we introduce Bart, a language to specify attribute-based access policies for bartering resource access among the parties of a distributed system. Using Bart, each party can independently define policies to control access to their resources, including specific conditions that may require agreement with other parties to access additional resources. Subsequently, based on the policies currently in force within the system, the evaluation process – triggered on demand to determine whether an access request can be granted – automatically manages the bartering of resource access among policies.
| File | Dimensione | Formato | |
|---|---|---|---|
|
ITASEC_25.pdf
Accesso chiuso
Tipologia:
Pdf editoriale (Version of record)
Licenza:
Open Access
Dimensione
1.36 MB
Formato
Adobe PDF
|
1.36 MB | Adobe PDF | Richiedi una copia |
I documenti in FLORE sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
