Sciweavers

WORDS
2005
IEEE

A Role-Based Access Control Policy Verification Framework for Real-Time Systems

14 years 5 months ago
A Role-Based Access Control Policy Verification Framework for Real-Time Systems
This paper presents a framework for verifying the access control requirements of real-time application systems such as workflow management systems and active databases. The temporal and event-based semantics of these applications can be expressed using event-driven Role Based Access Control (RBAC) model. Any comprehensive access control model such as RBAC requires verification and validation mechanisms to ensure the consistency of access control specification. An inconsistent access control specification exposes the underlying system to numerous vulnerabilities and security risks. In this paper, we propose a Petri-Net based framework for verifying the correctness of event-driven RBAC policies.
Basit Shafiq, Ammar Masood, James Joshi, Arif Ghaf
Added 25 Jun 2010
Updated 25 Jun 2010
Type Conference
Year 2005
Where WORDS
Authors Basit Shafiq, Ammar Masood, James Joshi, Arif Ghafoor
Comments (0)