This is a joint work with Itay Neeman of UCLA.
In the main part of the talk, we present DKAL, a new authorization language for distributed systems. DKAL achieves greater expressivity than the previous languages within the same feasibility constraints. It solves the information leak problem of the previous languages. It has a new, more robust logical foundation.
We do not presume that every listener is an access-control expert.