Date of Original Version
The final publication is available at Springer via http://dx.doi.org/10.1007/978-3-642-29963-6_5
Abstract or Description
We present the design and implementation of a file system which allows authorizations dependent on revocable and use-once policy certificates. Authorizations require explicit proof objects, combining ideas from previous authorization logics and Girard’s linear logic. Use-once certificates and revocations lists are maintained in a database that is consulted during file access. Experimental results demonstrate that the overhead of using the database is not significant in practice.
Lecture Notes in Computer Science, 7170, 40-55.