Event Systems and Access Control

We consider the interpretations of notions of access control (permissions, interdictions, obligations, and user rights) as run-time properties of information systems specified as event systems with fairness. We give proof rules for verifying that an access control policy is enforced in a system, and consider preservation of access control by refinement of event systems. In particular, refinement of user rights is non-trivial; we propose to combine low-level user rights and system obligations to implement high-level user rights

Critical analysis of the Carmo-Jones system of Contrary-to-Duty obligations

We offer a technical analysis of the contrary to duty system proposed in Carmo-Jones. We offer analysis/simplification/repair of their system and compare it with our own related system

Logics for modelling collective attitudes

We introduce a number of logics to reason about collective propositional attitudes that are defined by means of the majority rule. It is well known that majoritarian aggregation is subject to irrationality, as the results in social choice theory and judgment aggregation show. The proposed logics for modelling collective attitudes are based on a substructural propositional logic that allows for circumventing inconsistent outcomes. Individual and collective propositional attitudes, such as beliefs, desires, obligations, are then modelled by means of minimal modalities to ensure a number of basic principles. In this way, a viable consistent modelling of collective attitudes is obtained

Determining hierarchy between conflicting treaties: are there vertical rules in the horizontal system?

Treaties are contractual instruments that may provide special rules of priority in case they conflict with other treaties. When a treaty does not provide such rules, however, priority is determined by the rules of the Vienna Convention on the Law of Treaties (VCLT) and/or general principles of law. This article argues that both the VCLT and general principles of law do not provide an adequate solution to treaty conflicts. It suggests that the solution to treaty conflicts rests in a value-oriented reading of international law and the norms incorporated in treaties. Norms represent values and values represent interests or benefits for which international society requires protection. Conflicts of treaty norms are, therefore, conflicts of values that courts and dispute settlement bodies resolve by ordering a hierarchy of competing interests and protecting the most important interests in a given context

Legal compliance by design (LCbD) and through design (LCtD) : preliminary survey

1st Workshop on Technologies for Regulatory Compliance co-located with the 30th International Conference on Legal Knowledge and Information Systems (JURIX 2017). The purpose of this paper is twofold: (i) carrying out a preliminary survey of the literature and research projects on Compliance by Design (CbD); and (ii) clarifying the double process of (a) extending business managing techniques to other regulatory fields, and (b) converging trends in legal theory, legal technology and Artificial Intelligence. The paper highlights the connections and differences we found across different domains and proposals. We distinguish three different policydriven types of CbD: (i) business, (ii) regulatory, (iii) and legal. The recent deployment of ethical views, and the implementation of general principles of privacy and data protection lead to the conclusion that, in order to appropriately define legal compliance, Compliance through Design (CtD) should be differentiated from CbD

Media contracts formalization using a standardized contract expression language

Contract Expression Languages allow representing business contracts in a digital and structured form. Some examples are the Content Reference Forum format, the OASIS eContracts standard or a proposed extension for MPEG-21 Part 5. These formats have influenced the design of the MPEG-21 Contract Expression Language (CEL), which has been recently specified by modelling the most relevant clauses in audiovisual contracts. The MPEG-21 CEL, described in this paper, defines a language for representing media contracts as XML. It is structured in two schemas, a core defining the structural elements of a contract, and an extension with vocabulary for specific applications.Peer ReviewedPostprint (author’s final draft

Mapping Shari'Ah normative reasoning concepts

Altres ajuts: Project IEC PRO2018-S05Within the context of a larger project, in this paper, we discuss one-to-one mapping of the Shari'ah normative concepts of wajib, haram, Sunnah, etc., with conventional normative concepts of obliga tion, prohibition, and permission. The goal of the mapping to gaining a better understanding of the Shari'ah normative concepts and what deontic effects they generate when applied, and what conse quences can be attained through the actions as compared to the Western normative concepts. Existing literature lacks such understanding of the correspondence between the two normative systems. The mapping shows conceptual overlapping between the concepts, yet the two types of systems should be separated from each other in terms of the philosophy, context, and the consequences of the Islamic normative systems as the expression of the divine will

Encapsulating deontic and branching time specifications

In this paper, we investigate formal mechanisms to enable designers to decompose specifications (stated in a given logic) into several interacting components in such a way that the composition of these components preserves their encapsulation and internal non-determinism. The preservation of encapsulation (or locality) enables a modular form of reasoning over specifications, while the conservation of the internal non-determinism is important to guarantee that the branching time properties of components are not lost when the entire system is obtained. The basic ideas come from the work of Fiadeiro and Maibaum where notions from category theory are used to structure logical specifications. As the work of Fiadeiro and Maibaum is stated in a linear temporal logic, here we investigate how to extend these notions to a branching time logic, which can be used to reason about systems where non-determinism is present. To illustrate the practical applications of these ideas, we introduce deontic operators in our logic and we show that the modularization of specifications also allows designers to maintain the encapsulation of deontic prescriptions; this is in particular useful to reason about fault-tolerant systems, as we demonstrate with a small example.Fil: Castro, Pablo Francisco. Universidad Nacional de Río Cuarto; Argentina. Consejo Nacional de Investigaciones Científicas y Técnicas. Centro Científico Tecnológico Conicet - Córdoba; ArgentinaFil: Maibaum, Thomas S. E.. Mc Master University; Canad

Preservation of Policy Adherence under Refinement

-Policy-based management is an approach to the management of systems with respect to issues such as security, access control and trust by the enforcement of policy rules. This paper addresses the problem of integrating the requirements imposed by a policy with the system development process. In order to take a policy specification into account in the development of a system specification, the notion of policy adherence is formalized as a relation between policy specifications and system specifications. Adherence of a system specification to a policy specification means that the former satisfies the latter. The integrated development process is supported by refinement, where both the policy specification and the system specification may be developed under any number of refinement steps. This paper characterizes the conditions under which adherence is preserved under refinement and identifies development rules that guarantee adherence preservation. By results of transitivity and compositionality the integrated development process and the analysis tasks can be conducted in a stepwise and modular way, thereby facilitating development. Oppdragsgiver: Research Council of Norwa