Verifying Access Control Policies through Model Checking
نویسندگان
چکیده
This report details the progression of research conducted on my PhD, for the first half of the academic year 2006-2007. I present my intial exploration and the subsequent chosen direction of my thesis, a review of literature surrounding the subject and a summary of the work conducted to date. Furthermore, I detail the intended future progression of my research, its desired goals, proposed content and some anticipated results. I conclude by specifying a timetable forthe production of the forthcoming Thesis Proposal.
منابع مشابه
General Methods for Access Control Policy Verification
Access control systems are among the most critical of computer security components. Faulty policies, misconfigurations, or flaws in software implementations can result in serious vulnerabilities. To formally and precisely capture the security properties that access control should adhere to, access control models are usually written, bridging the gap in abstraction between policies and mechanism...
متن کاملModel Checking Agent Knowledge in Dynamic Access Control Policies
In this paper, we develop a modeling technique based on interpreted systems in order to verify temporal-epistemic properties over access control policies. This approach enables us to detect information flow vulnerabilities in dynamic policies by verifying the knowledge of the agents gained by both reading and reasoning about system information. To overcome the practical limitations of state exp...
متن کاملVerification of agent knowledge in dynamic access control policies
We develop a modeling technique based on interpreted systems in order to verify temporal-epistemic properties over access control policies. This approach enables us to detect information flow vulnerabilities in dynamic policies by verifying the knowledge of the agents gained by both reading and reasoning about system information. To overcome the practical limitations of state explosion in model...
متن کاملSynthesising verified access control systems through model checking
We present a framework for evaluating and generating access control policies. The framework contains a modelling formalism called RW, which is supported by a model checking tool. RW is designed for modelling access control policies, and verifying their properties. The RW language is very expressive, allowing us to model complex access conditions which can depend on data values, other permission...
متن کاملModelling and verifying dynamic access control policies using knowledge-based model checking
The purpose of access control policies in computing is to guarantee that access to resources is solely restricted to legitimate users. This clarity of purpose does not make the design of these policies any easier. Today’s systems are large in size, have many users with different roles and can be accessed from anywhere and at any time. Systems often allowed users to perform actions and read data...
متن کامل