Policy that enforces the rules of a Sharing With Partners Privacy System. It accomplishes this by using the Direct Time Limited Permissions vocabulary and just ignoring the time attributes. Penn Security Lab University of Pennsylvania mjmay@seas.upenn.edu

200 South 33rd Street, Philadelphia, PA 19104

USA http://securitylab.cis.upenn.edu/pdrm Checks that the requesting principal has direct permission set dir Checks that the requesting principal has indirect permission set indir The conditions that must be true particularly for a publish subscribe event dir The conditions that must be true particularly for a publish subscribe event when the subscriber has only indirect permission dir indir The conditions that need to be checked for an Action event to proceed Checks that the action proposed in an Action Event is part of the set A_indir Conditions necessary for the execution of a Creation event (a) The establisher must be the subject of the permissions--> Checks if the one setting policy in a Set Policy Event is the subject Checks two conditions on the set policy event for the case where an outsider is setting policy for the subject dir indir Allows transfer of data provided that the receiver has direct permission and that the other conditions in the Publish/Subscribe event are met Allows transfer of data provided that the receiver has indirect permission, the publisher has direct permission, and that the other conditions in the Publish/Subscribe event are met Allows all actions from one principal on a subject provided that the actor has direct permission to do so and that the other conditions in the Action event are met Allows restricted actions from one principal on a subject provided that the actor has indirect permission to do so, the action is in the allowed set of actions by partners, and that the other conditions in the Action event are met Allows creation of data about a subject provided that the creator has direct permission and that the other conditions in the Publish/Subscribe event are met Allows a subject to grant direct permission to anybody. No one else may grant this right. Allows a principal with direct permission to grant indirect permission to partners.