Model Checking Agent Knowledge in Dynamic Access Control Policies

被引：0

作者：

Koleini, Masoud ^{[1
]}

Ritter, Eike ^{[1
]}

Ryan, Mark ^{[1
]}

机构：

[1] Univ Birmingham, Birmingham B15 2TT, W Midlands, England

来源：

TOOLS AND ALGORITHMS FOR THE CONSTRUCTION AND ANALYSIS OF SYSTEMS, TACAS 2013 | 2013年 / 7795卷

基金：

英国工程与自然科学研究理事会;

关键词：

D O I：

暂无

中图分类号：

TP31 [计算机软件];

学科分类号：

081202 ; 0835 ;

摘要：

In this paper, we develop a modeling technique based on interpreted systems in order to verify temporal-epistemic properties over access control policies. This approach enables us to detect information flow vulnerabilities in dynamic policies by verifying the knowledge of the agents gained by both reading and reasoning about system information. To overcome the practical limitations of state explosion in model-checking temporal-epistemic properties, we introduce a novel abstraction and refinement technique for temporal-epistemic safety properties in ACTLK (ACTL with knowledge modality K) and a class of interesting properties that does fall in this category.

引用

页码：448 / 462

页数：15

共 50 条

[1] Conformance Checking of Dynamic Access Control Policies
Power, David
Slaymaker, Mark
Simpson, Andrew
FORMAL METHODS AND SOFTWARE ENGINEERING, 2011, 6991 : 227 - 242
[2] Model-checking access control policies
Guelev, DP
Ryan, M
Schobbens, PY
INFORMATION SECURITY, PROCEEDINGS, 2004, 3225 : 219 - 230
[3] Model Checking Distributed Mandatory Access Control Policies
Alexander, Perry
Pike, Lee
Loscocco, Peter
Coker, George
ACM TRANSACTIONS ON INFORMATION AND SYSTEM SECURITY, 2015, 18 (02)
[4] Evaluating access control policies through model checking
Zhang, N
Ryan, M
Guelev, DP
INFORMATION SECURITY, PROCEEDINGS, 2005, 3650 : 446 - 460
[5] Automated Analysis of Access Control Policies Based on Model Checking
Truong A.
SN Computer Science, 2020, 1 (6)
[6] A model for checking consistency in access control policies for network management
Cridlig, Vincent
State, Radu
Festor, Olivier
2007 10TH IFIP/IEEE INTERNATIONAL SYMPOSIUM ON INTEGRATED NETWORK MANAGEMENT (IM 2009), VOLS 1 AND 2, 2007, : 11 - +
[7] A Knowledge-Based Verification Method for Dynamic Access Control Policies
Koleini, Masoud
Ryan, Mark
FORMAL METHODS AND SOFTWARE ENGINEERING, 2011, 6991 : 243 - 258
[8] Conformance checking of access control policies specified in XACML
Hu, Vincent C.
Martin, Evan
Hwang, JeeHyun
Xie, Tao
COMPSAC 2007: THE THIRTY-FIRST ANNUAL INTERNATIONAL COMPUTER SOFTWARE AND APPLICATIONS CONFERENCE, VOL II, PROCEEDINGS, 2007, : 275 - +
[9] Dynamic adaptation of access control policies
Bharadwaj, V
Baras, J
MILCOM 2003 - 2003 IEEE MILITARY COMMUNICATIONS CONFERENCE, VOLS 1 AND 2, 2003, : 761 - 766
[10] Dynamic model checking for multi-agent systems
Osman, Nardine
Robertson, David
Walton, Christopher
DECLARATIVE AGENT LANGUAGES AND TECHNOLOGIES IV, 2006, 4237 : 43 - +

← 1 2 3 4 5 →