A Model Checking Based Approach for Verification of Attribute-Based Access Control Policies in Cloud Infrastructures

被引：0

作者：

Kotenko, Igor ^{[1
,2
]}

Saenko, Igor ^{[1
,2
]}

Levshun, Dmitry ^{[1
,2
]}

机构：

[1] Russian Acad Sci SPIIRAS, St Petersburg Inst Informat & Automat, 14 Th Liniya,39, St Petersburg 199178, Russia

[2] St Petersburg Natl Res Univ Informat Technol Mech, ITMO Univ, 49 Kronverkskiy Prospekt, St Petersburg 197101, Russia

来源：

PROCEEDINGS OF THE FOURTH INTERNATIONAL SCIENTIFIC CONFERENCE INTELLIGENT INFORMATION TECHNOLOGIES FOR INDUSTRY (IITI'19) | 2020年 / 1156卷

关键词：

Access control; Model checking; Temporal logics; ABAC; Cloud infrastructure;

D O I：

10.1007/978-3-030-50097-9_17

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

Attribute-Based Access Control (ABAC) model is a perspective access control model for cloud infrastructures used for automation of industrial, transport and energy systems as they include large number of users, resources and dynamical changed permissions. The paper considers the features of ABAC model and the theoretical background for verification of the ABAC policies based on the model checking. The possibility of applying the model checking is justified on the example of the ABAC policy. Implementation of the proposed approach was made using the UPPAAL verification tool. Experimental assessment shows high acceptability of the model checking not only for finding anomalies in ABAC policies but for finding decisions to eliminate them.

引用

页码：165 / 175

页数：11

共 50 条

[31] An approach to attribute-based object access
Liu, Qun
Feng, Dan
Wang, Fang
Huazhong Keji Daxue Xuebao (Ziran Kexue Ban)/Journal of Huazhong University of Science and Technology (Natural Science Edition), 2006, 34 (12): : 50 - 52
[32] An Ontological Template for Context Expressions in Attribute-based Access Control Policies
Veloudis, Simeon
Paraskakis, Iraklis
Petsos, Christos
Verginadis, Yiannis
Patiniotakis, Ioannis
Mentzas, Gregoris
CLOSER: PROCEEDINGS OF THE 7TH INTERNATIONAL CONFERENCE ON CLOUD COMPUTING AND SERVICES SCIENCE, 2017, : 123 - 134
[33] Fast Distributed Evaluation of Stateful Attribute-Based Access Control Policies
Thang Bui
Stoller, Scott D.
Sharma, Shikhar
DATA AND APPLICATIONS SECURITY AND PRIVACY XXXI, DBSEC 2017, 2017, 10359 : 101 - 119
[34] An Attribute-Based Access Control for Cloud Enabled Industrial Smart Vehicles
Gupta, Maanak
Awaysheh, Feras M.
Benson, James
Alazab, Mamoun
Patwa, Farhan
Sandhu, Ravi
IEEE TRANSACTIONS ON INDUSTRIAL INFORMATICS, 2021, 17 (06) : 4288 - 4297
[35] Accountable specific attribute-based encryption scheme for cloud access control
Nayudu, P. Prathap
Sekhar, Krovi Raja
INTERNATIONAL JOURNAL OF SYSTEM ASSURANCE ENGINEERING AND MANAGEMENT, 2022,
[36] Efficiently Attribute-Based Access Control for Mobile Cloud Storage System
Lv, Zhiquan
Chi, Jialin
Zhang, Min
Feng, Dengguo
2014 IEEE 13TH INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS (TRUSTCOM), 2014, : 292 - 299
[37] Attribute-Based Access Control Scheme with Efficient Revocation in Cloud Computing
Xia, Zhihua
Zhang, Liangao
Liu, Dandan
CHINA COMMUNICATIONS, 2016, 13 (07) : 92 - 99
[38] A survey on attribute-based encryption schemes of access control in cloud environments
Hwang, M.-S. (mshwang@asia.edu.tw), 1600, Femto Technique Co., Ltd. (15):
[39] Efficient Attribute-Based Access Control With Authorized Search in Cloud Storage
Hao, Jialu
Liu, Jian
Wang, Huimei
Liu, Lingshuang
Xian, Ming
Shen, Xuemin
IEEE ACCESS, 2019, 7 : 182772 - 182783
[40] Secure and Efficient Attribute-Based Access Control for Multiauthority Cloud Storage
Wei, Jianghong
Liu, Wenfen
Hu, Xuexian
IEEE SYSTEMS JOURNAL, 2018, 12 (02): : 1731 - 1742

← 1 2 3 4 5 →