earticle

영어

Access control system is a mandatory step in the security policy implementation. Accesses carried out according to certain modes (read, write ...) by subjects (users, process, programs) on objects (data, files, programs). To specify, implement and reason within a formal framework allow ensuring the correction of the programs that in turn guarantee the proper functioning of this policy.
This article deals, on the one hand, with designing a model within a formal framework in which both the comparison and the composition of access control policies can be expressed, and on the other hand, with elaborating new techniques ensuring the re-use of this model.
Such formal models have already been developed but suffer from too many constraints, are not expressive enough and are specific to professional activities. They all deserve to be reconsidered and extended within a uniform framework in order to study their links and to come up with re-use techniques.
The main object of this work is the use of Petri Nets for system modeling. Our results enable us to combine formalism and new access control policies. Moreover, the access control policies are considered as the instances within a more general scheme.