Automated verification of access control policies using a SAT solver

被引:66
|
作者
Graham Hughes
Tevfik Bultan
机构
[1] University of California,Computer Science Department
来源
International Journal on Software Tools for Technology Transfer | 2008年 / 10卷 / 6期
关键词
Access control; Automated verification;
D O I
10.1007/s10009-008-0087-9
中图分类号
学科分类号
摘要
Managing access control policies in modern computer systems can be challenging and error-prone. Combining multiple disparate access policies can introduce unintended consequences. In this paper, we present a formal model for specifying access to resources, a model that encompasses the semantics of the xacml access control language. From this model we define several ordering relations on access control policies that can be used to automatically verify properties of the policies. We present a tool for automatically verifying these properties by translating these ordering relations to Boolean satisfiability problems and then applying a sat solver. Our experimental results demonstrate that automated verification of xacml policies is feasible using this approach.
引用
收藏
页码:503 / 520
页数:17
相关论文
共 50 条
  • [41] Using a SAT-solver to schedule sports leagues
    Andrei Horbach
    Thomas Bartsch
    Dirk Briskorn
    Journal of Scheduling, 2012, 15 : 117 - 125
  • [42] Using a SAT-solver to schedule sports leagues
    Horbach, Andrei
    Bartsch, Thomas
    Briskorn, Dirk
    JOURNAL OF SCHEDULING, 2012, 15 (01) : 117 - 125
  • [43] Finding Minimum Locating Arrays Using a SAT Solver
    Konishi, Tatsuya
    Kojima, Hideharu
    Nakagawa, Hiroyuki
    Tsuchiya, Tatsuhiro
    10TH IEEE INTERNATIONAL CONFERENCE ON SOFTWARE TESTING, VERIFICATION AND VALIDATION WORKSHOPS - ICSTW 2017, 2017, : 276 - 277
  • [44] SAT solver using reconfigurable hardware and virtual logic
    Abramovici, Miron, 2000, Kluwer Academic Publishers, Dordrecht, Netherlands (24) : 1 - 2
  • [45] A SAT Solver Using Reconfigurable Hardware and Virtual Logic
    Miron Abramovici
    Jose T. De Sousa
    Journal of Automated Reasoning, 2000, 24 : 5 - 36
  • [46] Instance Assignment Coverage Feature for Operation Control of SAT Solver
    Li, Zhihui
    Chen, Shuwei
    Wu, Guanfeng
    Xu, Yang
    INTERNATIONAL JOURNAL OF COMPUTATIONAL INTELLIGENCE SYSTEMS, 2025, 18 (01)
  • [47] In-Memory SAT-Solver for Self-Verification of Programmable Memristive Architectures
    Shirinzadeh, Fatemeh
    Deb, Arighna
    Shirinzadeh, Saeideh
    Kole, Abhoy
    Datta, Kamalika
    Drechsler, Rolf
    PROCEEDINGS OF THE 37TH INTERNATIONAL CONFERENCE ON VLSI DESIGN, VLSID 2024 AND 23RD INTERNATIONAL CONFERENCE ON EMBEDDED SYSTEMS, ES 2024, 2024, : 384 - 389
  • [48] Automated Verification of Load Tests Using Control Charts
    Nguyen, Thanh H. D.
    Adams, Bram
    Jiang, ZhenMing
    Hassan, Ahmed E.
    Nasser, Mohamed
    Flora, Parminder
    2011 18TH ASIA-PACIFIC SOFTWARE ENGINEERING CONFERENCE (APSEC 2011), 2011, : 282 - 289
  • [49] Automated verification of security policies in mobile code
    Braghin, Chiara
    Sharygina, Natasha
    Barone-Adesi, Katerina
    INTEGRATED FORMAL METHODS, PROCEEDINGS, 2007, 4591 : 37 - 53
  • [50] An Automated SAT Encoding-Verification Approach for Efficient Model Checking
    Hoque, Khaza Anuarul
    Mohamed, O. Ait
    Abed, Sa'ed
    Boukadoum, Mounir
    2010 INTERNATIONAL CONFERENCE ON MICROELECTRONICS, 2010, : 419 - 422
12345