Beyond Administration: A Modeling Scheme Supporting the Dynamic Analysis of Role-based Access Control Policies

机译：超越管理：支持基于角色的访问控制策略的动态分析的建模方案

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Despite defining a de-facto standard in model-based security engineering, role-based access control models still suffer from limited analysis capabilities. This is especially true for dynamic security properties in the lineage of HRU safety. As a consequence, despite of their widespread use for policy specification and implementation, it is difficult to provide and preserve correctness guarantees for such models. We propose a formal framework, called DRBAC, to resolve this dilemma: While retaining application-oriented model abstractions, our approach allows to configure their dynamics in terms of state transitions. This enables a security engineer to tailor both a model and its analysis method to certain safety-related analysis goals. We demonstrate this claim based on a practical security policy.

机译：尽管在基于模型的安全工程中定义了De-Facto标准，但基于角色的访问控制模型仍然存在有限的分析能力。对于HRU安全谱系中的动态安全性质尤其如此。因此，尽管对政策规范和实施广泛使用，但难以为这些模型提供并保持正确的保障。我们提出了一个正式的框架，称为DRBAC，解决这个困境：同时保留面向应用程序的模型抽象，我们的方法允许在状态转换方面配置其动态。这使安全工程师能够根据某些安全相关的分析目标定制模型及其分析方法。我们根据实际的安全政策展示本索赔。

著录项

来源
《International Conference on Security and Cryptography》|2020年|652p|共12页
会议地点
作者
Marius Schlegel; Peter Amthor;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP309-53;
关键词
Security engineering; Security policies; Access control; Role-based access control models; RBAC; Heuristic safety analysis; Formal methods;

机译：安全工程;安全策略;访问控制;基于角色的访问控制模型;RBAC;启发式安全分析;正式方法;
入库时间 2022-08-21 10:47:13

相似文献

外文文献
中文文献
专利

1. An object-oriented organizational model to support dynamic role-based access control in electronic commerce [J] . Edward C. Cheng Decision support systems . 2000,第4期

机译：面向对象的组织模型，用于支持电子商务中基于角色的动态访问控制
2. A comprehensive modeling framework for role-based access control policies [J] . Ameni Ben Fadhel, Domenico Bianculli, Lionel Briand The Journal of Systems and Software . 2015,第sepa期

机译：基于角色的访问控制策略的综合建模框架
3. DF-RBAC: Dynamic and Fine-grained Role-Based Access Control Scheme with Smart Contract [J] . Danyang Liu, Anming Dong, Biwei Yan, Procedia Computer Science . 2021,第a期

机译：DF-RBAC：具有智能合同的动态和细粒度的角色访问控制方案
4. Beyond Administration: A Modeling Scheme Supporting the Dynamic Analysis of Role-based Access Control Policies [C] . Marius Schlegel, Peter Amthor International Conference on Security and Cryptography . 2020

机译：超越管理：支持基于角色的访问控制策略的动态分析的建模方案
5. Role-Based Access Control Administration of Security Policies and Policy Conflict Resolution in Distributed Systems. [D] . Kibwage, Stephen Sakawa. 2015

机译：分布式系统中基于角色的访问控制安全策略管理和策略冲突解决。
6. A Role-Based Access Control Model in Modbus SCADA Systems. A Centralized Model Approach [O] . Santiago Figueroa-Lorenzo, Javier Añorga, Saioa Arrizabalaga 2019

机译：Modbus SCADA系统中的基于角色的访问控制模型。集中模型方法
7. Role-Based Access Control Administration of Security Policies and Policy Conflict Resolution in Distributed Systems [O] . Kibwage Stephen Sakawa 2015

机译：分布式系统中基于角色的访问控制安全策略管理和策略冲突解决
8. Model Based Analysis and Validation of Access Control Policies Technical rept. series [R] . Bryans, J. W. 2006

机译：基于模型的访问控制策略分析与验证技术部门

Beyond Administration: A Modeling Scheme Supporting the Dynamic Analysis of Role-based Access Control Policies

摘要

著录项

相似文献

相关主题

期刊订阅