Jorge Lobo receives Best Paper Award at SACMAT 2017
List of results published directly linked with the projects co-funded by the Spanish Ministry of Economy and Competitiveness under the María de Maeztu Units of Excellence Program (MDM-2015-0502).
List of publications acknowledging the funding in Scopus.
The record for each publication will include access to postprints (following the Open Access policy of the program), as well as datasets and software used. Ongoing work with UPF Library and Informatics will improve the interface and automation of the retrieval of this information soon.
The MdM Strategic Research Program has its own community in Zenodo for material available in this repository 
as well as at the UPF e-repository 
Jorge Lobo receives Best Paper Award at SACMAT 2017
The work “A Datalog Framework for Modeling Relationship-based Access Control Policies”, authored by Jorge Lobo and Edelmira Pasarella (UPC) has received the Best Paper Award at ACM SACMAT 2017, the ACM Symposium on Access Control Models and Technologies celebrated in Indianapolis, USA, on June 21st – 23rd.
http://www.sacmat.org/2017/index.phphttp://www.sacmat.org/2017/index.php
The work “A Datalog Framework for Modeling Relationship-based Access Control Policies”, authored by Jorge Lobo and Edelmira Pasarella (UPC) has received the Best Paper Award at ACM SACMAT 2017, the ACM Symposium on Access Control Models and Technologies celebrated in Indianapolis, USA, on June 21st – 23rd. The announcement at the web of the conference can be found here ( http://www.sacmat.org/2017/index.php)
Abstract: Relationships like friendship to limit access to resources have been part of social network applications since their beginnings. Describing access control policies in terms of relationships is not particular to social networks and it arises naturally in many situations. Hence, we have recently seen several proposals formalizing different Relationship-based Access Control (ReBAC) models. In this paper, we introduce a class of Datalog programs suitable for modeling ReBAC and argue that this class of programs, that we called ReBAC Datalog policies, provides a very general framework to specify and implement ReBAC policies. To support our claim, we first formalize the merging of two recent proposals for modeling ReBAC, one based on hybrid logic and the other one based on path regular expressions. We present extensions to handle negative authorizations and temporal policies. We describe mechanism for policy analysis, and then discuss the feasibility of using Datalog-based systems as implementations.