Explicitly Timed Authorization Logic
A document describes explicitly timed authorization logic (nicknamed "η-logic"). In prior authorization logics, it is, variously, impossible or difficult to handle time explicitly; express security policies that involve complex, time-dependent relationships; or reason accurately about time. By enabling explicit mention of time, η-logic makes it easier to reason about time-dependent consequences of policies.
This logic combines ideas from a prior authorization logic and prior hybrid and constraint-based logics. This logic has been made constructive to keep evidence as direct as possible and to include linearity to model consumable authorizations. This logic is designed to be deployed with proof-carrying authorization (PCA), according to which security policies are formalized in a logic and each access request is accompanied by a proof establishing that authorization follows logically from the policies, except that unlike in prior logics, the proof can be refined to mention that access is allowed at the time of the request.
The document follows a proof-theoretic approach leading to a meta-theory of η-logic. It shows that a reasonably expressive fragment of η-logic can be enforced straightforwardly in a PCA architecture. The expressiveness of η-logic is illustrated through examples.
This work was done by Henry DeYoung, Deepak Garg, and Frank Pfenning of Carnegie Mellon University.
CMU-0001
More From SAE Media Group
Aerospace & Defense Tech Briefs
Deterministic and Modular Architecture for Embedded Vehicle Systems
Medical Design Briefs
Securing the Future of Healthcare through the Right Cybersecurity Architecture
Sensor Technology
The Industrial Nervous System: IIoT and PLCs
Tech Briefs
A ‘Smarter’ Way to Protect an Electric Grid
Motion Control Technology
An Architecture for Controlling Multiple Robots
Aerospace & Defense Tech Briefs
A Formal Model of the Attack Surface of a Software System
Aerospace & Defense Tech Briefs
The Next Generation of Mission-Critical Communications Infrastructure is Here
Aerospace & Defense Tech Briefs
Developing and Validating Statistical Cyber Defenses
Aerospace & Defense Tech Briefs
Automatic Abstraction of Information From Digitized Images
Air Force Research Laboratory Technology Horizons
Intelligence Fusion System Tracks Mobile Targets
Sensor Technology
O-RAN Redefining the Future of Wireless Connectivity
Motion Control Tech Briefs
Navigating a Mobile Robot Across Terrain Using Fuzzy Logic
Robotics & Automation INSIDER
A Faster, Better Way to Train General-Purpose Robots
Tech Briefs
Fused Analytic Desktop Environment (FADE)
Air Force Research Laboratory Technology Horizons
A Concept for Information Extraction From Remote Wireless Sensor Networks
Tech Briefs
Software for Managing Distributed Real-Time Data
Tech Briefs
Autonomous Environment-Monitoring Networks
Tech Briefs
Who Knows How Much AI Knows? This Tech Does
Top Stories
INSIDERDefense
New 3D-Printable Nanocomposite Prevents Overheating in Military Electronics
Technology ReportSoftware
Talking SDVs and Zonal Architecture with TE Connectivity
NewsDesign
2026 Nissan Sentra Review: Putting the Pieces Together
INSIDERDesign
New Defense Department Program Seeks 300,000 Drones From Industry by 2027
INSIDERDefense
Anduril Completes First Semi-Autonomous Flight of CCA Prototype
INSIDERDefense
Webcasts
Transportation
Hydrogen Engines Are Heating Up for Heavy Duty
Manufacturing & Prototyping
SAE Automotive Podcast: Solid-State Batteries
Manufacturing & Prototyping
SAE Automotive Engineering Podcast: Additive Manufacturing
Defense
A New Approach to Manufacturing Machine Connectivity for the Air Force
Automotive
Optimizing Production Processes with the Virtual Twin
