PhD Thesis

 

Thesis Title:

Normative Logic Based Semantic Aware Authorization Model

 

Abstract:

Semantic awareness is a new trend in some environments especially, the Web to give information a well-defined meaning (semantics). The main goal of giving semantics to information is making machines capable of interpreting and processing them. Moving to the semantic-aware environments, which are the new generation of distributed environments, Web imposes new security requirements, which should be considered in proposing an appropriate security model.

The logical foundation of semantic-aware environments (based on Description logic) as well as special security requirements in these environments (especially the requirement of abstraction from the implementation and inference control) motivates us to propose a logic-based security model to protect the resources in these environments. The proposed logic is the combination of Deontic logic and Description logic which enables administrators of different domains to specify their security policies in terms of deontic statuses: obligations, prohibitions, and permissions. In this logic the impact of subsumption relation in propagation of properties, especially security policies is considered as an axiom.

 

 

 

Morteza Amini

PhD Candidate in

Computer Software Engineering

 

Sharif Network Security Center (NSC)

Department of Computer Engineering

Sharif University of Technology