Official policies for controlling access to classified information in the U.S. are quite complex and often difficult to enforce. We present an encoding of a common core of these policies in an authorization logic, and describe their rigorous enforcement in PCFS, a file system implemented for such purposes.

24 pages

*Symantec Corporation

Return to: SCS Technical Report Collection
School of Computer Science

This page maintained by [email protected]