Property verification for generic access control models

Vincent C. Hu; D. Richard Kuhn; Tao Xie

doi:10.1109/EUC.2008.22

Property verification for generic access control models

Vincent C. Hu, D. Richard Kuhn, Tao Xie

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

To formally and precisely capture the security properties that access control should adhere to, access control models are usually written to bridge the rather wide gap in abstraction between policies and mechanisms. In this paper, we propose a new general approach for property verification for access control models. The approach defines a standardized structure for access control models, providing for both property verification and automated generation of test cases. The approach expresses access control models in the specification language of a model checker and expresses generic access control properties in the property language. Then the approach uses the model checker to verify these properties for the access control models and generates test cases via combinatorial covering array for the system implementations of the models.

Original language	English (US)
Title of host publication	Proceedings of The 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008
Pages	243-250
Number of pages	8
DOIs	https://doi.org/10.1109/EUC.2008.22
State	Published - 2008
Externally published	Yes
Event	5th International Conference on Embedded and Ubiquitous Computing, EUC 2008 - Shanghai, China Duration: Dec 17 2008 → Dec 20 2008

Publication series

Name	Proceedings of The 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008
Volume	2

Other

Other	5th International Conference on Embedded and Ubiquitous Computing, EUC 2008
Country/Territory	China
City	Shanghai
Period	12/17/08 → 12/20/08

ASJC Scopus subject areas

Computer Networks and Communications
Software
Communication

Online availability

10.1109/EUC.2008.22

Library availability

Discover UIUC Full Text

Cite this

Property verification for generic access control models. / Hu, Vincent C.; Kuhn, D. Richard; Xie, Tao.
Proceedings of The 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008. 2008. p. 243-250 4755235 (Proceedings of The 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008; Vol. 2).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Hu, VC, Kuhn, DR & Xie, T 2008, Property verification for generic access control models. in Proceedings of The 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008., 4755235, Proceedings of The 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008, vol. 2, pp. 243-250, 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008, Shanghai, China, 12/17/08. https://doi.org/10.1109/EUC.2008.22

@inproceedings{02b7fa50d0f84b819d8b6507d1f077ce,

title = "Property verification for generic access control models",

abstract = "To formally and precisely capture the security properties that access control should adhere to, access control models are usually written to bridge the rather wide gap in abstraction between policies and mechanisms. In this paper, we propose a new general approach for property verification for access control models. The approach defines a standardized structure for access control models, providing for both property verification and automated generation of test cases. The approach expresses access control models in the specification language of a model checker and expresses generic access control properties in the property language. Then the approach uses the model checker to verify these properties for the access control models and generates test cases via combinatorial covering array for the system implementations of the models.",

author = "Hu, {Vincent C.} and Kuhn, {D. Richard} and Tao Xie",

year = "2008",

doi = "10.1109/EUC.2008.22",

language = "English (US)",

isbn = "9780769534923",

series = "Proceedings of The 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008",

pages = "243--250",

booktitle = "Proceedings of The 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008",

note = "5th International Conference on Embedded and Ubiquitous Computing, EUC 2008 ; Conference date: 17-12-2008 Through 20-12-2008",

}

TY - GEN

T1 - Property verification for generic access control models

AU - Hu, Vincent C.

AU - Kuhn, D. Richard

AU - Xie, Tao

PY - 2008

Y1 - 2008

N2 - To formally and precisely capture the security properties that access control should adhere to, access control models are usually written to bridge the rather wide gap in abstraction between policies and mechanisms. In this paper, we propose a new general approach for property verification for access control models. The approach defines a standardized structure for access control models, providing for both property verification and automated generation of test cases. The approach expresses access control models in the specification language of a model checker and expresses generic access control properties in the property language. Then the approach uses the model checker to verify these properties for the access control models and generates test cases via combinatorial covering array for the system implementations of the models.

AB - To formally and precisely capture the security properties that access control should adhere to, access control models are usually written to bridge the rather wide gap in abstraction between policies and mechanisms. In this paper, we propose a new general approach for property verification for access control models. The approach defines a standardized structure for access control models, providing for both property verification and automated generation of test cases. The approach expresses access control models in the specification language of a model checker and expresses generic access control properties in the property language. Then the approach uses the model checker to verify these properties for the access control models and generates test cases via combinatorial covering array for the system implementations of the models.

UR - http://www.scopus.com/inward/record.url?scp=63149102166&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=63149102166&partnerID=8YFLogxK

U2 - 10.1109/EUC.2008.22

DO - 10.1109/EUC.2008.22

M3 - Conference contribution

AN - SCOPUS:63149102166

SN - 9780769534923

T3 - Proceedings of The 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008

SP - 243

EP - 250

BT - Proceedings of The 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008

T2 - 5th International Conference on Embedded and Ubiquitous Computing, EUC 2008

Y2 - 17 December 2008 through 20 December 2008

ER -

Property verification for generic access control models

Abstract

Publication series

Other

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this