원문정보
보안공학연구지원센터(IJSIA)
International Journal of Security and Its Applications
Vol.7 No.2
2013.03
pp.89-104
피인용수 : 0건 (자료제공 : 네이버학술정보)
초록
영어
Verifying the correctness of large, complex and dynamic access control policies by hand is insufficient and error-prone. We present X-policy, a knowledge-based verification tool that can analyse the system's vulnerabilities where the attackers can act as a coalition of users, use the system, share knowledge and collaborate with each other to achieve the attack. We present a policy language that is able to express dynamic access control policies and a corresponding query language. We model the EasyChair conference management system and we analyse in details three security properties of EasyChair using our model. Finally, we compare our results with similar tools and we discuss the results and the advantages of our tool and approach.
목차
Abstract
1. Introduction
1.1 Our Contribution
1.2 Paper Structure
2. X-Policy Modeling Language
2.1 Access Control System
2.2.1 For-loops
2.3 Query
2.4 Strategy
3. X-Policy Model Checking
3.1 The transition system
3.2 Representation of init
3.3 Representation of G
3.4 Backwards Reachability Computation
4. Tool: Case Study - Analysis of EC Security Properties
4.1 Property 1: A single subreviewer should not be able to determine the outcome of apaper reviewing process by writing two reviews of the same paper.
4.2 Property 2: A paper author should not review her own paper.
4.3 Property 3: Users should be accountable for their actions.
5. Evaluation of the method/tool
6. Related Work
7. Conclusion
References
1. Introduction
1.1 Our Contribution
1.2 Paper Structure
2. X-Policy Modeling Language
2.1 Access Control System
2.2.1 For-loops
2.3 Query
2.4 Strategy
3. X-Policy Model Checking
3.1 The transition system
3.2 Representation of init
3.3 Representation of G
3.4 Backwards Reachability Computation
4. Tool: Case Study - Analysis of EC Security Properties
4.1 Property 1: A single subreviewer should not be able to determine the outcome of apaper reviewing process by writing two reviews of the same paper.
4.2 Property 2: A paper author should not review her own paper.
4.3 Property 3: Users should be accountable for their actions.
5. Evaluation of the method/tool
6. Related Work
7. Conclusion
References
저자정보
참고문헌
자료제공 : 네이버학술정보