Abstract

The modelling of access control (AC) policies aim to describe aspects of different security requirements at a higher level of abstraction. Once the AC policy has been modelled, the difficulty lies in the expression and formal verification of the properties of this policy. This paper proposes to develop a formal framework for the specification and validation of the hybrid AC policy. In order to increase the flexibility of AC, an extension of the UACML model to the emergency RBAC model (E-RBAC) is proposed. We start with the semiformal specification of AC rules using activity diagrams that we call E-UACML accompanied by AC constraints and spatio-temporal constraints. E-UACML is then translated into a formal specification expressed in the Fiacre language and the requirements in observer automata using the CDL language. The latter is used to formally verify the properties with OBP (model checking). We evaluate our approach with a case study.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Formalisation of access control based on observers automata
Mohammed Walid Krakallah ... Safia Nait Bahloul
International Journal of System of Systems Engineering | VOL. 11
Mohammed Walid Krakallah, et. al.Mohammed Walid Krakallah ... Safia Nait Bahloul
01 Jan 2020
Access Control Management in Open Distributed Virtual Repositories and the Grid
Adam Wierzbicki ... Edgar Głowacki
-
Adam Wierzbicki, et. al.Adam Wierzbicki ... Edgar Głowacki
25 Nov 2007
Reconciling IHE-ATNA profile with a posteriori contextual access and usage control policy in healthcare environment
Hanieh Azkia ... Frederic Cuppens
-
Hanieh Azkia, et. al.Hanieh Azkia ... Frederic Cuppens
01 Aug 2010
Requirements-based Access Control Analysis and Policy Specification (ReCAPS)
Qingfeng He ... Annie I Antón
Information and Software Technology | VOL. 51
Qingfeng He, et. al.Qingfeng He ... Annie I Antón
10 Jan 2009
View more papers

More From: International Journal of System of Systems Engineering

Paper Title
Journal
Date
Author
An EFSM-based model for testing security issues in the Hadoop ecosystem
Oussama Maakoul ... Lalla Amina Charaf
International Journal of System of Systems Engineering | VOL. 14
Oussama Maakoul, et. al.Oussama Maakoul ... Lalla Amina Charaf
01 Jan 2024
Enhancing the Performance Assessment of Network-Based and Machine Learning for Module Availability Estimation
Abdullah Hasan Hussein ... Aqeel Luaibi Challoob
International Journal of System of Systems Engineering | VOL. 14
Abdullah Hasan Hussein, et. al.Abdullah Hasan Hussein ... Aqeel Luaibi Challoob
01 Jan 2024
Performance analysis of internet of things-enabled WSN for agriculture
Bhawna Kumawat ... Reeba Korah
International Journal of System of Systems Engineering | VOL. 14
Bhawna Kumawat, et. al.Bhawna Kumawat ... Reeba Korah
01 Jan 2024
Biocybersecurity and applications of predictive physiological modelling
Lucas Potter ... Sachin Shetty
International Journal of System of Systems Engineering | VOL. 14
Lucas Potter, et. al.Lucas Potter ... Sachin Shetty
01 Jan 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.