Model Checking Agent Knowledge in Dynamic Access Control Policies

被引:0
|
作者
Koleini, Masoud [1 ]
Ritter, Eike [1 ]
Ryan, Mark [1 ]
机构
[1] Univ Birmingham, Birmingham B15 2TT, W Midlands, England
来源
TOOLS AND ALGORITHMS FOR THE CONSTRUCTION AND ANALYSIS OF SYSTEMS, TACAS 2013 | 2013年 / 7795卷
基金
英国工程与自然科学研究理事会;
关键词
D O I
暂无
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
In this paper, we develop a modeling technique based on interpreted systems in order to verify temporal-epistemic properties over access control policies. This approach enables us to detect information flow vulnerabilities in dynamic policies by verifying the knowledge of the agents gained by both reading and reasoning about system information. To overcome the practical limitations of state explosion in model-checking temporal-epistemic properties, we introduce a novel abstraction and refinement technique for temporal-epistemic safety properties in ACTLK (ACTL with knowledge modality K) and a class of interesting properties that does fall in this category.
引用
收藏
页码:448 / 462
页数:15
相关论文
共 50 条
  • [31] Specifying and reasoning about dynamic access-control policies
    Dougherty, Daniel J.
    Fisler, Kathi
    Krishnamurthi, Shriram
    AUTOMATED REASONING, PROCEEDINGS, 2006, 4130 : 632 - 646
  • [32] Automatic enforcement of access control policies among dynamic coalitions
    Atluri, V
    Warner, J
    DISTRIBUTED COMPUTING AND INTERNET TECHNOLOGY, PROCEEDINGS, 2004, 3347 : 369 - 378
  • [33] Dynamic deployment of Access and Usage Control Policies Using Aspects
    Ayed, Samiha
    Idrees, Muhammad Sabir
    Cuppens-Boulahia, Nora
    Cuppens, Frederic
    2015 INTERNATIONAL CONFERENCE ON PROTOCOL ENGINEERING (ICPE) AND INTERNATIONAL CONFERENCE ON NEW TECHNOLOGIES OF DISTRIBUTED SYSTEMS (NTDS), 2015,
  • [34] On the Practicality of Cryptographically Enforcing Dynamic Access Control Policies in the Cloud
    Garrison, William C., III
    Shull, Adam
    Myers, Steven
    Lee, Adam J.
    2016 IEEE SYMPOSIUM ON SECURITY AND PRIVACY (SP), 2016, : 819 - 838
  • [35] Dynamic access-control policies on XML encrypted data
    Bouganim, Luc
    Ngoc, Francois Dang
    Pucheral, Philippe
    ACM TRANSACTIONS ON INFORMATION AND SYSTEM SECURITY, 2008, 10 (04)
  • [36] A Dynamic Mandatory Access Control Model
    Jafarian, Jafar Haadi
    Amini, Morteza
    Jalili, Rasool
    ADVANCES IN COMPUTER SCIENCE AND ENGINEERING, 2008, 6 : 862 - 866
  • [37] HBAC: A model for history-based access control and its model checking
    Wang, Jing
    Takata, Yoshiaki
    Seki, Hiroyuki
    COMPUTER SECURITY - ESORICS 2006, PROCEEDINGS, 2006, 4189 : 263 - +
  • [38] Cyberspace-Oriented Access Control: Model and Policies
    Li, Fenghua
    Li, Zifu
    Han, Weili
    Wu, Ting
    Chen, Lihua
    Guo, Yunchuan
    2017 IEEE SECOND INTERNATIONAL CONFERENCE ON DATA SCIENCE IN CYBERSPACE (DSC), 2017, : 261 - 266
  • [39] Model checking algorithm for temporal logics of knowledge in multi-agent systems
    Wu, Li-Jun
    Su, Kai-Le
    Ruan Jian Xue Bao/Journal of Software, 2004, 15 (07): : 1012 - 1020
  • [40] Model checking agent dialogues
    Walton, CD
    DECLARATIVE AGENT LANGUAGES AND TECHNOLOGIES II, 2005, 3476 : 132 - 147
12345