Analysis of Lattice-Based Access Control Policies using Rewiting Systems and Tom.

Tony Bourdier 1 Horatiu Cirstea 1 Pierre-Etienne Moreau 1 Anderson Santana de Oliveira
1 PAREO - Formal islands: foundations and applications
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : In this paper we show how access control policies can be specified using term rewriting systems and present the corresponding implementation realized using the Tom framework. We focus on two well known models (Bell-Lapadula and McLean) and propose an algorithm that detects potential information leakages, i.e. checks that information can be accessed only by authorized users independently of the actions performed in a given system.
Type de document :
Communication dans un congrès
S. Mauw and L. van der Torre (eds). 1st Luxembourg Day on Security and Reliability, Feb 2009, Luxembourg city, Luxembourg. ISBN 2-919940-84-8, pp.33-40, 2009
Liste complète des métadonnées

https://hal.inria.fr/inria-00433424
Contributeur : Tony Bourdier <>
Soumis le : jeudi 19 novembre 2009 - 12:06:46
Dernière modification le : jeudi 11 janvier 2018 - 06:22:10

Identifiants

  • HAL Id : inria-00433424, version 1

Collections

Citation

Tony Bourdier, Horatiu Cirstea, Pierre-Etienne Moreau, Anderson Santana de Oliveira. Analysis of Lattice-Based Access Control Policies using Rewiting Systems and Tom.. S. Mauw and L. van der Torre (eds). 1st Luxembourg Day on Security and Reliability, Feb 2009, Luxembourg city, Luxembourg. ISBN 2-919940-84-8, pp.33-40, 2009. 〈inria-00433424〉

Partager

Métriques

Consultations de la notice

175