- Marc Denecker, DTAI, Department of Computer Science, KU Leuven
- Leon vander Torre, University of Luxembourg
During the past three years, we observe the following two trends. On the one hand, the complexity of policies is increasing from relatively simple access control models to more complex distributed and privacy aware policies. On the other hand, general purpose first order logic based frameworks replace dedicated special purpose frameworks to give complete logical formalizations. The proposed project SIEP defines complex composite distributed access control policies, including delegation and revocation of access rights, dynamic aspects such as evolving policies, trust, or belief of agents, it develops tools for verification, checking compliance, experimentation, simulation and analysis of policies, and it creates a prototype system to enforce distributed access control policies.