Jason Crampton's Home Page at the ISG

I am a professor in the Information Security Group at Royal Holloway, University of London. I did my PhD in the School of Computer Science and Information Systems at Birkbeck, University of London under the supervision of Professor George Loizou. I still maintain close links with Birkbeck, where I am an Associate Research Fellow.
My research focuses on access control, particularly models for role-based access control and cryptographic enforcement of information flow policies. Some forthcoming and selected publications are listed below; a full list of publications is available here or from DBLP.

For several years, I taught the Computer Security module (IY5512) on the MSc in Information Security at Royal Holloway. From October 2010, I will be teaching Network Security (IY5511).

I am an Associate Editor of ACM Transactions on Information and System Security and the open-access journal Algorithms.

Forthcoming events in which I am involved include

8th International Conference on Information Security Practice and Experience

International Workshop on Petri Net-based Security

Ninth Annual Conference on Privacy, Security and Trust

DBSec 2012, 26th Annual WG 11.3 Conference on Data and Applications Security and Privacy

17th ACM Symposium on Access Control Models and Technologies

Policy 2012, 4th IEEE International Symposium on Policies for Distributed Systems and Networks

ESORICS 2012, 17th European Symposium on Research in Computer Security

Email:
jason.crampton at rhul.ac.uk

Phone:
+44 (0)1784 443117

Fax:
+44 (0)1784 430766

Below is a short list of selected publications. A complete list of publications is available here or from DBLP. For each paper, a link is provided to the publisher's on-line version. Alternatively, I am happy to make a copy available on request.

J. Crampton. Practical constructions for the efficient cryptographic enforcement of interval-based access control policies. ACM Transactions on Information and System Security, 14(1):14, 2011. (doi:10.1145/1952982.1952996)
J. Crampton and M. Huth. An authorization framework resilient to policy evaluation failures. In Proceedings of 15th European Symposium on Research in Computer Security, pages 472–487, 2010. (doi:10.1007/978-3-642-15497-3_29)
Jason Crampton, Keith Martin, and Peter Wild. On key assignment for hierarchical access control. In Proceedings of 19th IEEE Computer Security Foundations Workshop, pages 98–111, 2006. (doi:10.1109/CSFW.2006.20)
Jason Crampton. Understanding and developing role-based administrative models. In Proceedings of the 12th ACM Conference on Computer and Communications Security, pages 158–167, 2005. (doi:10.1145/1102120.1102143)
K. Tan, J. Crampton, and C. Gunter. The consistency of task-based authorization constraints in workflow systems. In Proceedings of 17th IEEE Computer Security Foundations Workshop, pages 155–169, 2004. (doi:10.1109/CSFW.2004.1310739)
J. Crampton. On permissions, inheritance and role hierarchies. In Proceedings of the 10th ACM Conference on Computer and Communications Security, pages 85–92, 2003. (doi:10.1145/948109.948123)
J. Crampton. Specifying and enforcing constraints in role-based access control. In Proceedings of 8th ACM Symposium on Access Control Models and Technologies, pages 43–50, 2003. (doi:10.1145/775412.775419)
J. Crampton and G. Loizou. Administrative scope: A foundation for role-based administrative models. ACM Transactions on Information and System Security, 6(2):201–231, 2003. (doi:10.1145/762476.762478)