Analysis of Lattice-Based Access Control Policies using Rewiting Systems and Tom.

Tony Bourdier 1 Horatiu Cirstea 1 Pierre-Etienne Moreau 1 Anderson Santana de Oliveira
1 PAREO - Formal islands: foundations and applications
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : In this paper we show how access control policies can be specified using term rewriting systems and present the corresponding implementation realized using the Tom framework. We focus on two well known models (Bell-Lapadula and McLean) and propose an algorithm that detects potential information leakages, i.e. checks that information can be accessed only by authorized users independently of the actions performed in a given system.
Document type :
Conference papers
Liste complète des métadonnées
https://hal.inria.fr/inria-00433424
Contributor : Tony Bourdier <>
Submitted on : Thursday, November 19, 2009 - 12:06:46 PM
Last modification on : Thursday, January 11, 2018 - 6:22:10 AM

Identifiers

  • HAL Id : inria-00433424, version 1

Collections

INRIA | LORIA | UNIV-LORRAINE

Citation

Tony Bourdier, Horatiu Cirstea, Pierre-Etienne Moreau, Anderson Santana de Oliveira. Analysis of Lattice-Based Access Control Policies using Rewiting Systems and Tom.. 1st Luxembourg Day on Security and Reliability, Feb 2009, Luxembourg city, Luxembourg. pp.33-40. ⟨inria-00433424⟩

Export

BibTeX TEI DC DCterms EndNote

Share

Metrics

Record views

182

Contact


archive-ouverte@inria.fr