Fine-grained access control via policy-carrying data

Julian A. Padget, Wamberto W. Vasconcelos*

*Corresponding author for this work

Research output: Contribution to journalArticle

2 Citations (Scopus)
7 Downloads (Pure)


We address the problem of associating access policies with datasets and how to monitor compliance via policy-carrying data. Our contributions are a formal model in first-order logic inspired by normative multiagent systems to regulate data access, and a computational model for the validation of specific use cases and the verification of policies against criteria. Existing work on access policy identifies roles as a key enabler, with which we concur, but much of the rest focusses on authentication and authorization technology. Our proposal aims to address the normative principles put forward in Berners-Lee's bill of rights for the internet, through human-readable but machine-processable access control policies.

Original languageEnglish
Article number31
JournalACM Transactions on Internet Technology
Issue number3
Publication statusPublished - 2017



  • Action language
  • Answer set programming
  • Data sharing
  • Deontic logic
  • Privacy policy

ASJC Scopus subject areas

  • Computer Networks and Communications

Cite this