• DocumentCode
    3593562
  • Title

    Efficient algorithmic safety analysis of HRU security models

  • Author

    Fischer, Anja ; Kuuhnhauser, Winfried

  • Author_Institution
    Ilmenau University of Technology, Ilmenau, Germany
  • fYear
    2010
  • Firstpage
    1
  • Lastpage
    10
  • Abstract
    In order to achieve a high degree of security, IT systems with sophisticated security requirements increasingly apply security models for specifying, analyzing and implementing their security policies. While this approach achieves considerable improvements in effectiveness and correctness of a system´s security properties, model specification, analysis and implementation are yet quite complex and expensive. This paper focuses on the efficient algorithmic safety analysis of HRU security models. We present the theory and practical application of a method that decomposes a model into smaller and autonomous sub-models that are more efficient to analyze. A recombination of the results then allows to infer safety properties of the original model. A security model for a real-world enterprise resource planning system demonstrates the approach.
  • Keywords
    Analytical models; Authorization; Calculus; Safety; Web services; Access control; Enterprise resource planning security; HRU safety; Model decomposition; Security engineering; Security models; Security policies;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Security and Cryptography (SECRYPT), Proceedings of the 2010 International Conference on
  • Electronic_ISBN
    978-989-8425-18-8
  • Type

    conf

  • Filename
    5741683