Efficient and flexible access control via Jones-optimal logic program specialisation

Steve Barker, Michael Leuschel, Mauricio Varea
2008 Higher-Order and Symbolic Computation  
We describe the use of a flexible meta-interpreter for performing access control checks on deductive databases. The meta-program is implemented in Prolog and takes as input a database and an access policy specification. For processing access control requests we specialise the meta-program for a given access policy and database by using the logen partial evaluation system. The resulting specialised control checking program is dependent solely upon dynamic information that can only be known at
more » ... time of actual access request evaluation. In addition to describing our approach, we give a number of performance measures for our implementation of an access control checker. In particular, we show that by using our approach we get flexible access control with virtually no overhead, satisfying the Jones optimality criterion. The paper also shows how to satisfy the Jones optimality criterion more generally for interpreters written in the non-ground representation.
doi:10.1007/s10990-008-9030-8 fatcat:gna2at7nhvcmpg6b7n3alfkbhy