Soutei, a logic-based trust-management system system description

Andrew Pimlott, Oleg Kiselyov

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

16 Citations (Scopus)


We describe the design and implementation of a trust-management system Soutei, a dialect of Binder, for access control in distributed systems. Soutei policies and credentials are written in a declarative logic-based security language and thus constitute distributed logic programs. Soutei policies are modular, concise, and readable. They support policy verification, and, despite the simplicity of the language, express role- and attribute-based access control lists, and conditional delegation. We describe the real-world deployment of Soutei into a publish-subscribe web service with distributed and compartmentalized administration, emphasizing the often overlooked aspect of authorizing the creation of resources and the corresponding policies. Soutei brings Binder from a research prototype into the real world. Supporting large, truly distributed policies required non-trivial changes to Binder, in particular mode-restriction and goal-directed top-down evaluation. To improve the robustness of our evaluator, we describe a fair and terminating backtracking algorithm.

Original languageEnglish
Title of host publicationFunctional and Logic Programming
Subtitle of host publication8th International Symposium, FLOPS 2006, Proceedings
Number of pages16
Publication statusPublished - 2006
Event8th International Symposium on Functional and Logic Programming, FLOPS 2006 - Fuji-Susono, Japan
Duration: 2005 Apr 242005 Apr 26

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume3945 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349


Conference8th International Symposium on Functional and Logic Programming, FLOPS 2006


  • Access control
  • Backtracking
  • Datalog
  • Haskell
  • Logic Programming
  • Non-determinism
  • Security Language


Dive into the research topics of 'Soutei, a logic-based trust-management system system description'. Together they form a unique fingerprint.

Cite this