Paper Info
Title
Rewrite Based Specification of Access Control Policies
Abstract
Data protection within information systems is one of the main concerns in computer systems security and different access control policies can be used to specify the access requests that should be granted or denied. These access control mechanisms should guarantee that information can be accessed only by authorized users and thus prevent all information leakage. We propose a methodology for specifying and implementing access control policies using the rewrite based framework Tom. This approach allows us to check that any reachable state obtained following an access granted in the implementation satisfies the policy specification. We show that when security levels are not totally ordered some information leakage can be detected.
Year
DOI
Venue
2009
10.1016/j.entcs.2009.02.071
Electronic Notes in Theoretical Computer Science
Keywords
Field
DocType
access request,security level,term rewriting,information flow,access control policies,computer systems security,different access control policy,model-checking,granted access,access control mechanism,access control policy,information leakage,authorized user,information system
Information system,Computer access control,Information leakage,Computer security,Computer science,Role-based access control,Access control,Data Protection Act 1998
Journal
Volume
ISSN
Citations 
234,
Electronic Notes in Theoretical Computer Science
3
PageRank 
References 
Authors
0.38
12
3
Name
Order
Citations
PageRank
Horatiu Cirstea116415.93
Pierre-etienne Moreau259840.40
Anderson Santana de Oliveira3887.75