A Formal Model of Access Control for Mobile Interactive Devices

Frédéric Besson 1 Guillaume Dufay 1 Thomas Jensen 1
1 Lande - Logiciel : ANalyse et DEveloppement
IRISA - Institut de Recherche en Informatique et Systèmes Aléatoires, Inria Rennes – Bretagne Atlantique
Abstract : This paper presents an access control model for programming applications in which the access control to resources can employ user interaction to obtain the necessary permissions. This model is inspired by and improves on the Java security architecture used in Javaenabled mobile telephones. We consider access control permissions with multiplicities in order to allow to use a permission a certain number of times. An operational semantics of the model and a formal definition of what it means for an application to respect the security model is given. A static analysis which enforces the security model is defined and proved correct. A constraint solving algorithm implementing the analysis is presented.
Document type :
Other publications
Complete list of metadatas

Cited literature [12 references]  Display  Hide  Download

https://hal.inria.fr/inria-00083453
Contributor : Frédéric Besson <>
Submitted on : Friday, June 30, 2006 - 4:00:29 PM
Last modification on : Friday, November 16, 2018 - 1:25:25 AM
Long-term archiving on : Tuesday, September 18, 2012 - 3:26:11 PM

File

Identifiers

  • HAL Id : inria-00083453, version 1

Citation

Frédéric Besson, Guillaume Dufay, Thomas Jensen. A Formal Model of Access Control for Mobile Interactive Devices. 2006. ⟨inria-00083453⟩

Share

Metrics

Record views

306

Files downloads

244