Formal Verification of Authorization Policies for Enterprise Social Networks using PlusCal-2

Abstract : Information security research has been a highly active and widely studied research direction. In the domain of of Enterprise Social Networks (ESNs), the security challenges are amplified as they aim to incorporate the social technologies in an enterprise setup and thus asserting greater control on information security. Further, the security challenges may not be limited to the boundaries of a single enterprise and need to be catered for a federated environment where users from different ESNs can collaborate. In this paper, we address the problem of federated authorization for the ESNs and present an approach for combining user level policies with the enterprise policies. We present the formal verification technique for ESNs and how it can be used to identify the conflicts in the policies. It allows us to bridge the gap between user-centric or enterprise-centric approaches as required by the domain of ESN. We apply our specification of ESNs on a scenario and discuss the model checking results.
Type de document :
Communication dans un congrès
CollaborateCom 2017 - 13th EAI International Conference on Collaborative Computing: Networking, Applications and Worksharing, Dec 2017, Edimburg, United Kingdom. pp.1-10
Liste complète des métadonnées

Littérature citée [24 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01657116
Contributeur : Olivier Perrin <>
Soumis le : mercredi 17 janvier 2018 - 10:54:56
Dernière modification le : jeudi 18 janvier 2018 - 10:27:04
Document(s) archivé(s) le : lundi 7 mai 2018 - 23:24:07

Fichier

 Accès restreint
Fichier visible le : 2020-01-17

Connectez-vous pour demander l'accès au fichier

Identifiants

  • HAL Id : hal-01657116, version 1

Citation

Sabina Aktar, Ehtesham Zahoor, Olivier Perrin. Formal Verification of Authorization Policies for Enterprise Social Networks using PlusCal-2. CollaborateCom 2017 - 13th EAI International Conference on Collaborative Computing: Networking, Applications and Worksharing, Dec 2017, Edimburg, United Kingdom. pp.1-10. 〈hal-01657116〉

Partager

Métriques

Consultations de la notice

177