Security analysis of unified access control policies

Mahendra Pratap Singh, Shamik Sural, Vijayalakshmi Atluri, Jaideep Vaidya

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

In the modern computing era, access to resources is often restricted through contextual information and the attributes of users, objects and various other entities. Attribute-Based Access Control (ABAC) can capture those requirements as a policy, but it is not yet adopted like Role Based Access Control (RBAC) due to lack of a comprehensive administrative model. In the last few years, several efforts have been made to combine ABAC with RBAC, but they are limited to specification and enforcement only. Recently, we have presented a unified framework along with a role based administrative model that enables specification, enforcement and maintenance of unified access control policies, such as ABAC, RBAC and Meta-Policy Based Access Control (MPBAC). This paper describes role-based administrative model components and then present a methodology which uses a fixed-point based approach for verifying the security properties (like safety and liveness) of those policies in the presence of the administrative model. We also analyse the impact of ABAC, RBAC, MPBAC and administrative model components on the time taken for security analysis. Experimental results demonstrate that the proposed approach is scalable as well as effective.

Original languageEnglish (US)
Title of host publicationSecure Knowledge Management In Artificial Intelligence Era - 8th International Conference, SKM 2019, Proceedings
EditorsSanjay K. Sahay, Nihita Goel, Vishwas Patil, Murtuza Jadliwala
PublisherSpringer
Pages126-146
Number of pages21
ISBN (Print)9789811538162
DOIs
StatePublished - Jan 1 2020
Event8th International Conference on Secure Knowledge Management in Artificial Intelligence Era, SKM 2019 - Pilani, India
Duration: Dec 21 2019Dec 22 2019

Publication series

NameCommunications in Computer and Information Science
Volume1186 CCIS

Conference

Conference8th International Conference on Secure Knowledge Management in Artificial Intelligence Era, SKM 2019
CountryIndia
CityPilani
Period12/21/1912/22/19

All Science Journal Classification (ASJC) codes

  • Mathematics(all)
  • Computer Science(all)

Keywords

  • Attribute Based Access Control
  • Fixed-point analysis
  • Meta-Policy Based Access Control
  • Role Based Access Control
  • Security analysis

Fingerprint Dive into the research topics of 'Security analysis of unified access control policies'. Together they form a unique fingerprint.

  • Cite this

    Singh, M. P., Sural, S., Atluri, V., & Vaidya, J. (2020). Security analysis of unified access control policies. In S. K. Sahay, N. Goel, V. Patil, & M. Jadliwala (Eds.), Secure Knowledge Management In Artificial Intelligence Era - 8th International Conference, SKM 2019, Proceedings (pp. 126-146). (Communications in Computer and Information Science; Vol. 1186 CCIS). Springer. https://doi.org/10.1007/978-981-15-3817-9_8