Fraunhofer-Gesellschaft

Publica

Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Dynamic analysis of usage control policies

 
: Elrakaiby, Yehia

:
Volltext (PDF; )

Obaidat, M.S. ; Institute for Systems and Technologies of Information, Control and Communication -INSTICC-, Setubal:
11th International Conference on Security and Cryptography, SECRYPT 2014. Proceedings : 28 - 30 August 2014, Vienna, Austria, part of the ICETE, the 11th International Joint Conference on e-Business and Telecommunications
SciTePress, 2014
ISBN: 978-989-758-045-1
S.88-100
International Conference on Security and Cryptography (SECRYPT) <11, 2014, Vienna>
International Joint Conference on e-Business and Telecommunications (ICETE) <11, 2014, Vienna>
Englisch
Konferenzbeitrag, Elektronische Publikation
Fraunhofer IESE ()
usage control; access control; formal verification; Policy Analysis

Abstract
Usage control extends access control by enabling the specification of requirements that should be satisfied before, while and after access. To ensure that the deployment of usage control policies in target domains achieves the required security goals, policy verification and analysis tools are needed. In this paper, we present an approach for the dynamic analysis of usage control policies using formal descriptions of target domains and their usage control policies. Our approach provides usage control management explicit labeled transition system semantics and enables the automated verification of usage control policies using model checking.

: http://publica.fraunhofer.de/dokumente/N-316036.html