• DocumentCode
    2847960
  • Title

    Paradigm in Verification of Access Control

  • Author

    Hwang, JeeHyun ; Hu, Vincent ; Xie, Tao

  • fYear
    2012
  • fDate
    20-22 June 2012
  • Firstpage
    193
  • Lastpage
    193
  • Abstract
    Access control (AC) is one of the most fundamental and widely used requirements for privacy and security. Given a subject´s access request on a resource in a system, AC determines whether this request is permitted or denied based on AC policies (ACPs). This position paper introduces our approach to ensure the correctness of AC using verification. More specifically, given a model of an ACP, our approach detects inconsistencies between models, specifications, and expected behaviors of AC. Such inconsistencies represent faults (in the ACP), which we target at detecting before ACP deployment.
  • Keywords
    Access control; Computational modeling; NIST; Privacy; Safety; System recovery;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Software Security and Reliability Companion (SERE-C), 2012 IEEE Sixth International Conference on
  • Conference_Location
    Gaithersburg, MD, USA
  • Print_ISBN
    978-1-4673-2670-4
  • Type

    conf

  • DOI
    10.1109/SERE-C.2012.14
  • Filename
    6258470
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2847960