Formal Verification of Access Control Policies

Article Sidebar

PDF
Published: Jan 13, 2017
DOI: https://doi.org/10.26483/ijarcs.v2i3.502

Main Article Content

Ramanuj Chouksey
R Sivashankari

Abstract

The primary purpose of security mechanisms in a system is to control access to information. Access control is the process of limiting
access to the resources of a system to authorized users, programs, processes, or other systems. In this paper we illustrate different access control
techniques and models that have been proposed in the literature and model checking approach to verify the properties of models. Model
checking approach first expresses access control models in the specification language of a model checker. It expresses generic access control
properties in temporal logic formulas and then uses the model checker to verify these properties for the access control models and generate the
counter example for those properties which is not true in the specified model. We use NuSMV model checker tool. We present a case study of a
health care system. The goal of our paper is to give a general approach for verification of a health care system using model checking.

 

 


Keywords: Access Control; RBAC,Model Checking;NUSMV;LTL;CTL;

Downloads

Download data is not yet available.

Article Details

Issue
Vol. 2 No. 3 (2011): May-June 2011
Section
Articles

COPYRIGHT

Submission of a manuscript implies: that the work described has not been published before, that it is not under consideration for publication elsewhere; that if and when the manuscript is accepted for publication, the authors agree to automatic transfer of the copyright to the publisher.

Authors who publish with this journal agree to the following terms:

  • Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
  • Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
  • Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work
  • The journal allows the author(s) to retain publishing rights without restrictions.
  • The journal allows the author(s) to hold the copyright without restrictions.