Automated analysis of RBAC policies with temporal constraints and static role hierarchies

IRIS

Temporal role based access control models support the specification and enforcement of several temporal constraints on role enabling, role activation, and temporal role hierarchies among others. In this paper, we define three mappings that preserve the solutions to a class of policy problems (they map security analysis problems in presence of static temporal role hierarchies to problems without them) and we show how they can be used to extend the capabilities of a tool for the analysis of administrative temporal role-based access control policies to reason in presence of temporal role hierarchies. An experimental evaluation with a prototype implementation shows the better behavior of one of the proposed mappings over the other two. To the best of our knowledge, ours is the first tool capable of reasoning with (static) temporal role hierarchies. Copyright is held by the owner/author(s).

Automated analysis of RBAC policies with temporal constraints and static role hierarchies / Ranise, S.; Truong, A.; Vigano, L.. - 13-17-:(2015), pp. 2177-2184. (Intervento presentato al convegno 30th Annual ACM Symposium on Applied Computing, SAC 2015 tenutosi a esp nel 2015) [10.1145/2695664.2695787].

Automated analysis of RBAC policies with temporal constraints and static role hierarchies

Ranise S.;Truong A.;Vigano L.

2015-01-01

Abstract

Temporal role based access control models support the specification and enforcement of several temporal constraints on role enabling, role activation, and temporal role hierarchies among others. In this paper, we define three mappings that preserve the solutions to a class of policy problems (they map security analysis problems in presence of static temporal role hierarchies to problems without them) and we show how they can be used to extend the capabilities of a tool for the analysis of administrative temporal role-based access control policies to reason in presence of temporal role hierarchies. An experimental evaluation with a prototype implementation shows the better behavior of one of the proposed mappings over the other two. To the best of our knowledge, ours is the first tool capable of reasoning with (static) temporal role hierarchies. Copyright is held by the owner/author(s).

Scheda breve

Scheda completa

Scheda completa (DC)

	Anno di pubblicazione (Date of publication)
	
			2015
		
	Titolo del volume (Proceedings title)
	
			Proceedings of the ACM Symposium on Applied Computing
		
	Luogo di edizione (Place of publication)
	
			1515 BROADWAY, NEW YORK, NY 10036-9998 USA
		
	Casa editrice (Publisher)
	
			Association for Computing Machinery
		
	ISBN
	
			9781450331968
		
	Codice Scopus (Scopus Identifier)
	
			2-s2.0-84952827916
		
	Codice WOS (WOS identifier)
	
			WOS:000381029800345
		
	Tutti gli autori
	
			Ranise, S.; Truong, A.; Vigano, L.
		
	Citazione
	
			Automated analysis of RBAC policies with temporal constraints and static role hierarchies / Ranise, S.; Truong, A.; Vigano, L.. - 13-17-:(2015), pp. 2177-2184. (Intervento presentato al  convegno 30th Annual ACM Symposium on Applied Computing, SAC 2015 tenutosi a esp nel 2015) [10.1145/2695664.2695787].
		
	Appare nelle tipologie:
	
			04.1 Saggio in atti di convegno (Paper in Proceedings)

File in questo prodotto:

Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/333142

Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni

ND

8

5

social impact