Analyzing temporal role based access control models

Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies Pub Date : 2012-06-20 DOI:10.1145/2295136.2295169

Emre Uzun, V. Atluri, S. Sural, Jaideep Vaidya, G. Parlato, A. L. Ferrara, P. Madhusudan

{"title":"Analyzing temporal role based access control models","authors":"Emre Uzun, V. Atluri, S. Sural, Jaideep Vaidya, G. Parlato, A. L. Ferrara, P. Madhusudan","doi":"10.1145/2295136.2295169","DOIUrl":null,"url":null,"abstract":"Today, Role Based Access Control (RBAC) is the de facto model used for advanced access control, and is widely deployed in diverse enterprises of all sizes. Several extensions to the authorization as well as the administrative models for RBAC have been adopted in recent years. In this paper, we consider the temporal extension of RBAC (TRBAC), and develop safety analysis techniques for it. Safety analysis is essential for understanding the implications of security policies both at the stage of specification and modification. Towards this end, in this paper, we first define an administrative model for TRBAC. Our strategy for performing safety analysis is to appropriately decompose the TRBAC analysis problem into multiple subproblems similar to RBAC. Along with making the analysis simpler, this enables us to leverage and adapt existing analysis techniques developed for traditional RBAC. We have adapted and experimented with employing two state of the art analysis approaches developed for RBAC as well as tools developed for software testing. Our results show that our approach is both feasible and flexible.","PeriodicalId":74509,"journal":{"name":"Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies","volume":"28 1","pages":"177-186"},"PeriodicalIF":0.0000,"publicationDate":"2012-06-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"36","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2295136.2295169","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 36

Abstract

Today, Role Based Access Control (RBAC) is the de facto model used for advanced access control, and is widely deployed in diverse enterprises of all sizes. Several extensions to the authorization as well as the administrative models for RBAC have been adopted in recent years. In this paper, we consider the temporal extension of RBAC (TRBAC), and develop safety analysis techniques for it. Safety analysis is essential for understanding the implications of security policies both at the stage of specification and modification. Towards this end, in this paper, we first define an administrative model for TRBAC. Our strategy for performing safety analysis is to appropriately decompose the TRBAC analysis problem into multiple subproblems similar to RBAC. Along with making the analysis simpler, this enables us to leverage and adapt existing analysis techniques developed for traditional RBAC. We have adapted and experimented with employing two state of the art analysis approaches developed for RBAC as well as tools developed for software testing. Our results show that our approach is both feasible and flexible.

查看原文本刊更多论文

分析基于临时角色的访问控制模型

如今，基于角色的访问控制(RBAC)是用于高级访问控制的事实上的模型，并被广泛部署在各种规模的企业中。近年来，对RBAC的授权和管理模型采用了几种扩展。在本文中，我们考虑了RBAC (TRBAC)的时间扩展，并开发了它的安全性分析技术。在规范和修改阶段，安全分析对于理解安全策略的含义至关重要。为此，在本文中，我们首先定义了TRBAC的管理模型。我们进行安全性分析的策略是将TRBAC分析问题适当分解为多个类似于RBAC的子问题。除了使分析更简单之外，这还使我们能够利用和适应为传统RBAC开发的现有分析技术。我们已经适应并尝试使用为RBAC开发的两种最先进的分析方法以及为软件测试开发的工具。结果表明，该方法既可行又灵活。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the ... ACM symposium on access control models and technologies. ACM Symposium on Access Control Models and Technologies

自引率

0.00%

发文量