short-paper

Formal analysis of usage control policies

Authors:
Boulares Ouchenne

University of PAU, IUT de Mont de Marsan, France

University of PAU, IUT de Mont de Marsan, France
View Profile

,
Ousmane Koné

University of PAU, IUT de Mont de Marsan, France

University of PAU, IUT de Mont de Marsan, France
View Profile

SIN '11: Proceedings of the 4th international conference on Security of information and networksNovember 2011Pages 231–234https://doi.org/10.1145/2070425.2070466

Published:14 November 2011Publication History

SIN '11: Proceedings of the 4th international conference on Security of information and networks

Pages 231–234

ABSTRACT

This paper offers a set of translation rules to generate timed automata from the NOMAD specification language. We detail the rules and the process of the translation. The ultimate goal of this systematic translation is to perform model-checking over the translated specification.

References

Xacml: extensible access control markup language. In Version 2.0. Available from: http://www.oasis-open.org/ committees /xacml/.Google Scholar
R. Alur and D. L. Dill. A theory of timed automata. Theoretical Computer Science, 126:183--235, 1994. Google ScholarDigital Library
G. Behrmann, R. David, and K. G. Larsen. A tutorial on uppaal. pages 200--236. Springer, 2004.Google Scholar
F. Cuppens, N. Cuppens-Boulahia, and T. Sans. Nomad: A security model with non atomic actions and deadlines. In Proceedings of the 18th IEEE workshop on Computer Security Foundations, pages 186--196, Washington, DC, USA, 2005. IEEE Computer Society. Google ScholarDigital Library
A. A. E. Kalam, S. Benferhat, A. Miège, R. E. Baida, F. Cuppens, C. Saurel, P. Balbiani, Y. Deswarte, and G. Trouessin. Organization based access control. In Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks, POLICY '03, pages 120--, Washington, DC, USA, 2003. IEEE Computer Society. Google ScholarDigital Library
W. Mallouli, A. Mammar, and A. R. Cavalli. Integration of timed security policies within a tefsm specification. In Telecom SudParis, Technical Report TI-PU-08--868, 2008.Google Scholar

Index Terms

Formal analysis of usage control policies
1. Software and its engineering
  1. Software creation and management
    1. Software verification and validation
      1. Formal software verification
  2. Software organization and properties
    1. Software functional properties
      1. Formal methods
        Model checking
2. Theory of computation
  1. Logic
    1. Verification by model checking

Recommendations

Formal model and policy specification of usage control

The recent usage control model (UCON) is a foundation for next-generation access control models with distinguishing properties of decision continuity and attribute mutability. A usage control decision is determined by combining authorizations, ...
Read More
Dynamic Analysis of Usage Control Policies
ICETE 2014: Proceedings of the 11th International Joint Conference on e-Business and Telecommunications - Volume 4

Usage control extends access control by enabling the specification of requirements that should be satisfied before, while and after access. To ensure that the deployment of usage control policies in target domains achieves the required security goals, ...
Read More
Specifying a Usage Control System
SACMAT '23: Proceedings of the 28th ACM Symposium on Access Control Models and Technologies

Modern system architectures require sophisticated access and usage control mechanisms. The need stems from demanding requirements for security, data sovereignty and privacy regulations, as well as the challenges presented by architectural approaches ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
SIN '11: Proceedings of the 4th international conference on Security of information and networks
November 2011
276 pages
ISBN:9781450310208
DOI:10.1145/2070425
General Chairs:
Mehmet A. Orgun
Macquarie University, Australia
,
Atilla Elçi
Süleyman Demirel University, Turkey
,
Oleg Makarevich
Southern Federal University, Russia
,
Sorin Huss
Techniche Universitat Darmstadt, Germany
,
Program Chairs:
Josef Pieprzyk
Macquarie University, Australia
,
Lyudmila Babenko
Southern Federal University, Russia
,
Alexander Chefranov
Eastern Mediterranean University, North Cyprus
,
Rajan Shankaran
Macquarie University, Australia
Copyright © 2011 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 14 November 2011
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Author Tags
model checking.
nomad
security policy
timed model
usage control
Qualifiers
- short-paper
Conference

Acceptance Rates
Overall Acceptance Rate102of289submissions,35%
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 0
  Total Citations
  View Citations
- 67
  Total Downloads
- Downloads (Last 12 months)2
- Downloads (Last 6 weeks)0
Other Metrics
View Author Metrics
Cited By
This publication has not been cited yet

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Formal analysis of usage control policies

SIN '11: Proceedings of the 4th international conference on Security of information and networks

ABSTRACT

References

Cited By

Index Terms

Recommendations

Formal model and policy specification of usage control

Dynamic Analysis of Usage Control Policies

Specifying a Usage Control System

Comments

Login options

Full Access

Published in

Sponsors

In-Cooperation

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Conference

Acceptance Rates

Funding Sources

Other Metrics

Article Metrics

Other Metrics

Cited By

PDF Format

eReader

Digital Edition

Caption

Formal analysis of usage control policies

SIN '11: Proceedings of the 4th international conference on Security of information and networks

ABSTRACT

References

Cited By

Index Terms

Recommendations

Formal model and policy specification of usage control

Dynamic Analysis of Usage Control Policies

Specifying a Usage Control System

Comments

Login options

Full Access

Published in

Sponsors

In-Cooperation

Publisher

Publication History

Permissions

Check for updates

Author Tags

Qualifiers

Conference

Acceptance Rates

Funding Sources

Article Metrics

Other Metrics

PDF Format

eReader

Digital Edition

Share this Publication link

Share on Social Media