Toggle Main Menu Toggle Search

Open Access padlockePrints

Formal Engineering of XACML Access Control Policies in VDM++

Lookup NU author(s): Dr Jeremy Bryans, Professor John Fitzgerald

Downloads

Full text for this publication is not currently held within this repository. Alternative links are provided below where available.


Abstract

We present a formal, tool-supported approach to the design and maintenance of access control policies expressed in the eXtensible Access Control Markup Language (XACML). Our aim is to help developers evaluate the consequences of policy decisions in complex situations where security requirements change and access decisions may depend on the external dynamic environment. The approach applies the model-oriented specification language from the Vienna Development Method (VDM++). An executable formal model of XACML access control is presented in VDM++. The use of the model to analyse and revise both policies and requirements on the environment is illustrated through an example. An approach to the practical problem of analysing access control in virtual organisations with dynamic membership and goals is proposed.


Publication metadata

Author(s): Bryans J, Fitzgerald JS

Editor(s): Butler, M; Hinchey, MG; Larrondo-Petrie, MM

Publication type: Conference Proceedings (inc. Abstract)

Publication status: Published

Conference Name: Formal Methods and Software Engineering: 9th International Conference on Formal Engineering Methods, ICFEM

Year of Conference: 2007

Pages: 37-56

ISSN: 0302-9743 (Print) 1611-3349 (Online)

Publisher: Springer

URL: http://dx.doi.org/10.1007/978-3-540-76650-6_4

DOI: 10.1007/978-3-540-76650-6_4

Library holdings: Search Newcastle University Library for this item

Series Title: Lecture Notes In Computer Science

ISBN: 9783540766483


Actions

Link to this publication


Share