Rewriting logic is a simple computational logic that can naturally express both concurrent
computation and logical deduction with great generality. This paper provides a gentle …

We describe a metamodel for access control, designed to take into account the specific
requirements of distributed environments. We see a distributed system consisting of several …

Security policies are one of the most fundamental elements of computer security. Current
security policy design is concerned with the composition of components in security systems …

In large, and often distributed, environments, where access control information may be
shared across multiple sites, the combination of individual specifications in order to define a …

Expressing security policies to govern distributed systems is a complex and error-prone task.
Policies are hard to understand, often expressed with unfriendly syntax, making it difficult for …

More and more current industrial control systems (eg, smart grids, oil and gas systems,
connected cars and trucks) have the capability to collect and transmit users' data in order to …

Dans cette thèse, nous nous intéressons à la spécification et à l'analyse modulaires de
politiques de sécurité flexibles basées sur des règles. Nous introduisons l'utilisation du …

The rewrite-based approach provides executable specifications for security policies, which
can be independently designed, verified, and then anchored on programs using a modular …

We describe the formalization of a correctness proof for a conflict detection algorithm for
XACML (eXtensible Access Control Markup Language). XACML is a standardized …

We propose an access control model that extends RBAC (role-based access control) to take
time and location into account, and use term rewriting systems to specify access control …