Security Language Expressions for Logic Resolution
First Claim
Patent Images
1. A system implementing a security scheme including a security language comprising an assertion syntax, an authorization query syntax, and a language semantics;
- wherein the assertion syntax includes an asserted fact and enables specification of one or more conditional facts as well as one or more constraints;
wherein the authorization query syntax includes one or more atomic queries that are enabled to be combined by logical connectives; and
wherein the language semantics includes a conditional rule having a delegation flag.
2 Assignments
0 Petitions
Accused Products
Abstract
A security language expresses assertions and authorization queries in a manner that facilitates logic resolution. In an example implementation, assertion syntax and authorization query syntax are described. In another example implementation, checks on the safety of assertions and authorization queries are described. In yet another example implementation, semantics rules are described.
-
Citations
20 Claims
-
1. A system implementing a security scheme including a security language comprising an assertion syntax, an authorization query syntax, and a language semantics;
- wherein the assertion syntax includes an asserted fact and enables specification of one or more conditional facts as well as one or more constraints;
wherein the authorization query syntax includes one or more atomic queries that are enabled to be combined by logical connectives; and
wherein the language semantics includes a conditional rule having a delegation flag. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- wherein the assertion syntax includes an asserted fact and enables specification of one or more conditional facts as well as one or more constraints;
-
12. A method comprising:
-
checking that an assertion of an assertion context is safe; checking that an authorization query is safe; and if the assertion context and the authorization query are safe as determined from the checking, evaluating the safe authorization query in conjunction with the safe assertion context. - View Dependent Claims (13, 14, 15, 16, 17)
-
-
18. A device that implements a security language comprising assertions and authorization queries in which an authorization query may be evaluated on an assertion context including at least one assertion;
- wherein the at least one assertion may be checked for safety using one or more syntactic checks.
- View Dependent Claims (19, 20)
Specification