Paper Info
Title
Conformance checking of dynamic access control policies
Abstract
The capture, deployment and enforcement of appropriate access control policies are crucial aspects of many modern software-based systems. Previously, there has been a significant amount of research undertaken with respect to the formal modelling and analysis of access control policies; however, only a limited proportion of this work has been concerned with dynamic policies. In this paper we explore techniques for the modelling, analysis and subsequent deployment of such policies--which may rely on external data. We use the Alloy modelling language to describe constraints on policies and external data; utilising these constraints, we test static instances constructed from the current state of the external data. We present Gauge, a constraint checker for static instances that has been developed to be complementary to Alloy, and show how it is possible to test systems of much greater complexity via Gauge than can typically be handled by a model finder.
Year
Venue
Keywords
2011
ICFEM
constraint checker,static instance,crucial aspect,formal modelling,dynamic access control policy,alloy modelling language,subsequent deployment,appropriate access control policy,access control policy,external data,conformance checking,current state
Field
DocType
Volume
Software deployment,Software engineering,Computer science,Real-time computing,Software,Enforcement,Access control,Conformance checking,Database
Conference
6991
ISSN
Citations 
PageRank 
0302-9743
2
0.38
References 
Authors
19
3
Name
Order
Citations
PageRank
David Power112416.71
Mark Slaymaker211915.44
Andrew Simpson328249.37