Evaluating Access Control Policies Through Model Checking

Zhang, Nan; Ryan, Mark; Guelev, Dimitar P.

doi:10.1007/11556992_32

Nan Zhang²⁰,
Mark Ryan²⁰ &
Dimitar P. Guelev²¹

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 3650))

Included in the following conference series:

International Conference on Information Security

1415 Accesses
58 Citations

Abstract

We present a model-checking algorithm which can be used to evaluate access control policies, and a tool which implements it. The evaluation includes not only assessing whether the policies give legitimate users enough permissions to reach their goals, but also checking whether the policies prevent intruders from reaching their malicious goals. Policies of the access control system and goals of agents must be described in the access control description and specification language introduced as RW in our earlier work. The algorithm takes a policy description and a goal as input and performs two modes of checking. In the assessing mode, the algorithm searches for strategies consisting of reading and writing steps which allow the agents to achieve their goals no matter what states the system may be driven into during the execution of the strategies. In the intrusion detection mode, a weaker notion of strategy is used, reflecting the willingness of intruders to guess the value of attributes which they cannot read.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Sandhu, R., Coyne, E., Feinstein, H., Youman, C.: Role-based access control models. IEEE Computer 29, 38–47 (1996)
Google Scholar
Anderson, R.: Security Engineering: A Guide to Building Dependable Distributed Systems. John Wiley & Sons, Inc., U.S.A. (2001)
Google Scholar
Guelev, D.P., Ryan, M.D., Schobbens, P.Y.: Model-checking access control policies. In: Zhang, K., Zheng, Y. (eds.) ISC 2004. LNCS, vol. 3225, pp. 219–230. Springer, Heidelberg (2004)
Chapter Google Scholar
Zhang, N., Ryan, M., Guelev, D.P.: Synthesising verified access control systems in XACML. In: The 2004 ACM Workshop on Formal Methods in Security Engineering, Washington DC, USA, pp. 56–65. ACM Press, New York (2004)
Chapter Google Scholar
Godik, S., Moses, T.: eXtensible Access Control Markup Language. OASIS committee. 1.1 edn, Committee specification (2003)
Google Scholar
Jackson, D.: Micromodels of Software: Lightweight Modelling and Analysis with Alloy. Software Design Group, MIT Lab for Computer Science (2002), This document and the tool can be obtained from http://alloy.mit.edu/
Whaley, J.: JavaBDD: Java BDD implementation (2004), Information about this implementation can be found at http://javabdd.sourceforge.net/
Zhang, N.: Web site for the access control policy evaluator and generator (2005), The tool can be obtained from http://www.cs.bham.ac.uk/~nxz
Fisler, K., Krishnamurthi, S., Meyerovich, L.A., Tschantz, M.C.: Verification and changeimpact analysis of access-control policies. In: ICSE 2005, St. Louis, Missouri, USA (2005)
Google Scholar
Clarke, E., Fujita, M., McGeer, P., Yang, J., Zhao, X.: Multi-terminal binary decision diagrams: An efficient data structure for matrix representation. In: International Workshop on Logic Synthesis, Tahoe City (1993)
Google Scholar
Ahmed, T., Tripathi, A.R.: Static verficiation of security requirements in role based CSCW systems. In: SACMAT 2003, Como, Italy (2003)
Google Scholar
Chess, B.: Improving computer security using extended static checking. In: 2002 IEEE Symposium on Security and Privacy, Washington, DC, USA, IEEE Computer Society, Los Alamitos (2002)
Google Scholar
Schaad, A., Moffett, J.: A lightweight approach to specification and analysis of role-based access control extensions. In: SACMAT 2002, Monterey, California, USA (2002)
Google Scholar
Jackson, D., Schechter, I., Shlyahter, H.: Alcoa: the Alloy constraint analyzer. In: The 22nd international conference on Software engineering, pp. 730–733. ACM Press, New York (2000)
Google Scholar

Download references

Author information

Authors and Affiliations

School of Computer Science, University of Birmingham, Birmingham, UK, B15 2TT
Nan Zhang & Mark Ryan
Section of Logic, Institute of Mathematics and Informatics, Acad. G. Bonchev str., bl. 8, 1113, Sofia, Bulgaria
Dimitar P. Guelev

Authors

Nan Zhang
View author publications
You can also search for this author in PubMed Google Scholar
Mark Ryan
View author publications
You can also search for this author in PubMed Google Scholar
Dimitar P. Guelev
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Cryptography and Security Department Institute for Infocomm Research, Singapore
Jianying Zhou
Department of Information and Communication Technologies, University of A Coruña, Spain
Javier Lopez
School of Information Systems, Singapore Management University, Singapore
Robert H. Deng
Institute for Infocomm Research, 119613, Singapore
Feng Bao

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Zhang, N., Ryan, M., Guelev, D.P. (2005). Evaluating Access Control Policies Through Model Checking. In: Zhou, J., Lopez, J., Deng, R.H., Bao, F. (eds) Information Security. ISC 2005. Lecture Notes in Computer Science, vol 3650. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11556992_32

Download citation

DOI: https://doi.org/10.1007/11556992_32
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-29001-8
Online ISBN: 978-3-540-31930-6
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics