首页> 外文会议>Computer aided verification >V_(AC) - Verifier of Administrative Role-Based Access Control Policies

【24h】

V_(AC) - Verifier of Administrative Role-Based Access Control Policies

机译：V_（AC）-基于管理角色的访问控制策略的验证者

获取原文

获取原文并翻译 | 示例

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

In this paper we present V_(AC), an automatic tool for verifying security properties of administrative Role-based Access Control (RBAC). RBAC has become an increasingly popular access control model, particularly suitable for large organizations, and it is implemented in several software. Automatic security analysis of administrative RBAC systems is recognized as an important problem, as an analysis tool can help designers check whether their policies meet expected security properties. V_(AC) converts administrative RBAC policies to imperative programs that simulate the policies both precisely and abstractly and supports several automatic verification back-ends to analyze the resulting programs. In this paper, we describe the architecture of V_(AC) and overview the analysis techniques that have been implemented in the tool. We also report on experiments with several benchmarks from the literature.

机译：在本文中，我们介绍了V_（AC），这是一种用于验证基于角色的管理访问控制（RBAC）安全属性的自动工具。 RBAC已成为一种越来越流行的访问控制模型，特别适用于大型组织，并且已在多种软件中实现。管理RBAC系统的自动安全性分析被认为是一个重要问题，因为分析工具可以帮助设计人员检查其策略是否符合预期的安全性。 V_（AC）将管理性RBAC策略转换为命令式程序，该命令式程序可以精确抽象地模拟策略，并支持多个自动验证后端以分析生成的程序。在本文中，我们描述了V_（AC）的体系结构，并概述了该工具中已实现的分析技术。我们还报告了文献中使用多个基准进行的实验。

著录项

来源
《Computer aided verification》|2014年|184-191|共8页
会议地点 Vienna(AU)
作者
Anna Lisa Ferrara; P. Madhusudan; Truc L. Nguyen; Gennaro Parlato;
展开▼
作者单位

University of Bristol, UK;

University of Illinois, USA;

University of Southampton, UK;

University of Southampton, UK;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词

相似文献

外文文献
中文文献
专利

1. Scalable automated symbolic analysis of administrative role-based access control policies by SMT solving [J] . Alessandro Armando, Silvio Ranise Journal of computer security . 2012,第4期

机译：通过SMT解决方案对基于管理角色的访问控制策略进行可扩展的自动符号分析
2. Policy analysis for Administrative Role-Based Access Control [J] . Amit Sasturkar, Ping Yang, Scott D. Stoller, Theoretical computer science . 2011,第44期

机译：基于管理角色的访问控制的策略分析
3. Towards Formal Verification of Role-Based Access Control Policies [J] . Jha S., Ninghui Li, Tripunitara M., IEEE transactions on dependable and secure computing . 2008,第4期

机译：正式验证基于角色的访问控制策略
4. VAC - Verifier of Administrative Role-Based Access Control Policies [C] . Anna Lisa Ferrara, P. Madhusudan, Truc L. Nguyen, International Conference on Computer Aided Verification . 2014

机译：VAC - 基于行政角色的访问控制策略的验证者
5. Administrative role-based access control 2005: A practical model for information security [D] . Elliott, Aaron A. 2005

机译：基于管理角色的访问控制2005：信息安全的实用模型
6. A Role-Based Access Control Model in Modbus SCADA Systems. A Centralized Model Approach [O] . Santiago Figueroa-Lorenzo, Javier Añorga, Saioa Arrizabalaga 2019

机译：Modbus SCADA系统中的基于角色的访问控制模型。集中模型方法
7. Vac- Verifier of Administrative Role-based Access Control Policies [O] . Anna Lisa Ferrara, P. Madhusudan, Truc L. Nguyen, 2015

机译：基于管理角色的访问控制策略的Vac-Verifier

V_(AC) - Verifier of Administrative Role-Based Access Control Policies

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅