Privacy System Direct Permissions Vocabulary

This is a vocabulary in EPAL that will be used for modelling the interactions in a Privacy System in the Direct Permissions system.

Penn Security Lab University of Pennsylvania

seclab@seas.upenn.edu

200 South 33rd Street, Philadelphia, PA 19104

USA http://www.securitylab.cis.upenn.edu

Subject

Subscriber

Holder

Root category that includes all subcategories

Root of all data types.

Purpose1

Purpose2

Root purpose that includes all others

Publish Subscribe event - T function

Creation event - V relation

Set Policy event - W relation

Action event - U relation

Container that represents a atomic permission object - one sigma of an owning principal on a subject principal

Name of the principal that owns this permission

Name of the subject of the permission

Value of the permission indicator (Can be {dir, bottom} only)

Date and time when the permission expires

Container with the information needed to evaluate a transfer request.

Value of the Sigma that the sender has on the subject

Value of the Sigma that the receiver has on the subject

Name of the sender

Name of the receiver

Name of the subject of the data

Information about the subject of a request

Name of the subject of the data

All the data necessary for the evaluation of a set policy event - p sets sigma on q for r at t

The name of the principal that is doing the setting of the permissions

The value of the permission that the setter is setting

The name of the principal that is receiving the permission on the subject

The name of the principal that the permission is being set about

The time and date when the set policy event is taking place

All the data necessary for the evaluation of a creation event - p creates x at t

The name of the principal that is doing the date creation

The object being created

The name of the principal that the date created is about

The time and date when the creation is taking place

All the data necessary for the evaluation of a set publish/subscribe event - p gets x from q at t

The name of the principal that is doing the publishing

The object that is being published

The name of the principal that is receiving the object

The name of the principal that the object is about

The time and date when the publishing/subscribing is taking place

All the data necessary for the evaluation of an action event - p does a one q at t

The name of the principal that is doing the acting

The action being done

The name of the principal that is being acted on

The time and date when the action is taking place