Uzun, Emre, Atluri, Vijayalakshmi, Sural, Shamik, Vaidya, Jaideep, Gennaro, Parlato, Ferrara, Anna Lisa and Madhusudan, P.
Analyzing temporal role based access control models
17th ACM Symposium on Access Control Models and Technologies, SACMAT '12, .
Today, Role Based Access Control (RBAC) is the de facto
model used for advanced access control, and is widely deployed
in diverse enterprises of all sizes. Several extensions
to the authorization as well as the administrative models for
RBAC have been adopted in recent years. In this paper, we
consider the temporal extension of RBAC (TRBAC), and
develop safety analysis techniques for it. Safety analysis is
essential for understanding the implications of security policies
both at the stage of specification and modification. Towards
this end, in this paper, we first define an administrative
model for TRBAC. Our strategy for performing safety
analysis is to appropriately decompose the TRBAC analysis
problem into multiple subproblems similar to RBAC.
Along with making the analysis simpler, this enables us to
leverage and adapt existing analysis techniques developed
for traditional RBAC. We have adapted and experimented
with employing two state of the art analysis approaches developed
for RBAC as well as tools developed for software
testing. Our results show that our approach is both feasible
Actions (login required)