SICS Intelligent Systems Laboratory

		Intelligent Systems Laboratory Swedish Institute of Computer Science

SICS > Intelligent Systems Laboratory > Policy-Based Reasoning

GENERAL

Overview
Researchers
Projects
Publications
Software
Job Openings
Contact

RESEARCH AREAS

Agent-Based Systems

Combinatorial Problem Solving and Prolog Technology

Policy-Based Reasoning

Biotechnology

Adaptive Robust Computing

MISCELLANEOUS

Former Members
Former Projects
SICS Phone/Email List

SICS
Box 1263
SE-16429 Kista
Sweden

+46-8 633 1500
+46-8 751 7230 (fax)

For more information on the SICS Intelligent Systems Laboratory please email sverker@sics.se.

Page Formatted for Printing

Policy-Based Reasoning

Overview

Many new applications in emerging information technologies have advanced needs for managing relations such as authorisation, trust and control among interacting agents (humans or artificial). This necessitates new models and mechanisms for structuring and flexible management of those relations. Within this group we focus on the issues of automated management of organisations in terms of policies and trust relations in highly dynamic and decentralised environments.

Our main goal is to develop a family of policy frameworks for different needs and applications. As part of our research we develop prototypes in collaboration with industrial partners to verify and disseminate our theoretical results.

We are organizing:

Policy 2005 - IEEE 6th International Workshop on Policies for Distributed Systems and Networks and

SACMAT 2005 - ACM Symposium on Access Control Models and Technologies.

Projects

Ongoing

TrustCoM - Trust and Contract Management
Policy Based Network Management
Authorisation and trust management in network based defense
Contract based resource sharing in coalitions

Completed

Delegation and Authorisation Management for Middlewares
Authorisation MANagement for Distributed Applications (AMANDA)
Authorisation server for Military command and control systems in collaboration with SAABTech Systems AB

Software

Delegent, The SICS Authorization Server.

Researchers

Babak Sadighi,
M.Sc. (principal investigator)
Marek J. Sergot,
Prof. (associated)
Gunnar Sjödin,
Ph.D., Docent
Pablo Giambiagi,
Ph. Lic.
Olle Olsson,
M.Sc.
Tomas Olsson,
M.Sc.
Erik Rissanen,
M.Sc.

Publications

Bibliography generated from publications.bib

Erik Rissanen, Babak Sadighi Firozabadi, and Marek Sergot. Discretionary overriding of access control in the privilige calculus. To appear in the Proceedings of Formal Aspects in Security and Trust, Toulouse, France, 2004.
Erik Rissanen, Babak Sadighi Firozabadi, and Marek Sergot. Towards a mechanism for discretionary overriding of access control - position paper. To be presented at the Twelfth International Workshop on Security Protocols, Cambridge, UK, 2004.
B. Sadighi Firozabadi and M. Sergot. Revocation in the Privilege Calculus. In Proceedings of the 1st International Workshop on Formal Aspects in Security and Trust (FAST 2003), pages 39-51, September 2003.
Erik Rissanen. Server based application level authorisation for rotor. IEE Proceedings Software, 150(5):291-295, October 2003.
Babak Sadighi, Olle Olsson, and Erik Rissanen. Managing authorisations in dynamic coalitions. Presented at CIMI conference May 2003, 2003.
Olav Bandmann, Mads Dam, and B. Sadighi Firozabadi. Constrained Delegations. In proceedings of 2002 IEEE Symposium on Security and Privacy, 2002.
Dam, Karlsson, Sadighi Firozabadi, and Stadler. A research agenda for distributed policy-based managment. In Proc. RVK´02, Stockholm, 2002.
B. Sadighi Firozabadi and M. Sergot. Revocation Schemes for Delegated Authorities. In proceedings of IEEE 3rd International Workshop on Policies for Distributed Systems and Networks, June 2002.
Babak Sadighi Firozabadi and Marek Sergot. Contractual access control. In Proceeding of 10th International Workshop on Security Protocols, number 2845 in Lecture Notes of Computer Science, pages 96-102, Cambridge, UK, April 2002. Springer Verlag.
Olav Bandmann, Babak Sadighi Firozabadi, and Olle Olsson. Decentralized management of access control. Internal SICS project report, 2001.
B. Sadighi Firozabadi, M. Sergot, and O. Bandmann. Using Authority Certificates to Create Management Structures. In proceedings of Security Protocols, 9th International Workshop, Cambridge, UK, April 2001.
A.J.I Jones and B. Sadighi Firozabadi. On the characterisation of a trusting agent - aspects of a formal approach. In C. Castelfranci and Y.H. Tan, editors, Trust and Deception in Virtual Societies, pages 157-168. Kluwer Academic Publishers, 2001.
Babak Sadighi Firozabadi and Marek Sergot. Power and permission in security systems. In B. Christianson, B. Crispo, and M. Roe, editors, Security Protocols, number 1796 in Lecture Notes of Computer Science, pages 48-53, Cambridge, UK, April 1999. Springer Verlag.
B. Sadighi Firozabadi, Y.H. Tan, and R. M. Lee. Formal definitions of fraud. In P. McNamara and H. Prakken, editors, Norms, Logics and Information Systems - New Studies in Deontic Logic and Computer Science, pages 275-288. IOS Press, 1999.
B. Sadighi Firozabadi and L. van der Torre. Towards a formal analysis of control systems. In Henri Prade, editor, 18th European Conference on Artificial Intelligence, pages 317-318. John Wiley and Sons, Ltd, 1998.