Controlling Access to Documents: A Formal Access Control Model

Sevinç, Paul E.; Basin, David; Olderog, Ernst-Rüdiger

doi:10.1007/11766155_25

Cited by 7 publications

(6 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Thus, the model should be generic enough to take all objects into account. Importance of a generic model is addressed in . Object abstraction: Presence of a very large number of objects (both complete object and subparts) necessitates some abstraction for object, which allows implicit permission assignment. Ease of administration: This follows from the previous point. More the number of rules to be written for defining object permissions to user, more are the chances of error.…”

Section: Related Workmentioning

confidence: 99%

A pragmatic approach towards secure sharing of digital objects

Singh

Gonsalves

2015

Security Comm Networks

View full text Add to dashboard Cite

Current access control models have limitations in scenarios where digital objects are decomposed into smaller objects before sharing. We propose an access control model (digital object‐based access model) for such scenarios involving object decomposition. Our model applies to the generic class of objects composing of documents, videos, and audio. We use temporal logic of actions to formally specify access policies in our model and verify different properties. Using mathematical modelling and simulation, we compare the usability and performance of our model in comparison with the widely used traditional access control model and role‐based access control model. With business process outsourcing as an example, we demonstrate that our model also yields a considerable reduction in the number of access permissions to be managed by an administrator as compared with other two models. Simulations show an improvement in the time required for access authorization in our model as compared with these two models. These improvements exhibited by our model become more prominent with the increase in the number of users and objects. Copyright © 2015 John Wiley & Sons, Ltd.

show abstract

Section: Related Workmentioning

confidence: 99%

A pragmatic approach towards secure sharing of digital objects

Singh

Gonsalves

2015

Security Comm Networks

View full text Add to dashboard Cite

show abstract

“…In a companion paper [34], we have applied CSP-OZ to specifying access control for documents, modeled as attributed trees. The full specification comprises around 25 pages and is given in [33].…”

Section: Discussionmentioning

confidence: 99%

“…This shows that CSP-OZ is a good starting point not only for specifying security automata, but also for exploring and interrelating different points in the security-design space. In a companion paper [34], we have applied CSP-OZ to a larger example, specifying a system for secure document processing.…”

Section: Introductionmentioning

confidence: 99%

Specifying and analyzing security automata using CSP-OZ

Basin

Olderog

Sevinç

2007

Proceedings of the 2nd ACM Symposium on Information, Computer and Communications Security

Self Cite

View full text Add to dashboard Cite

Security automata are a variant of Büchi automata used to specify security policies that can be enforced by monitoring system execution. In this paper, we propose using CSP-OZ, a specification language combining Communicating Sequential Processes (CSP) and Object-Z (OZ), to specify security automata, formalize their combination with target systems, and analyze the security of the resulting system specifications. We provide theoretical results relating CSP-OZ specifications and security automata and show how refinement can be used to reason about specifications of security automata and their combination with target systems. Through a case study, we provide evidence for the practical usefulness of this approach. This includes the ability to specify concisely complex operations and complex control, support for structured specifications, refinement, and transformational design, as well as automated, tool-supported analysis.

show abstract

“…In previous work [23,24,25], we developed an access-control system for documents. Standard operating system security mechanisms can be used to ensure that the system is not tampered with within an enterprise.…”

Section: Fig 5 Key Distributionmentioning

confidence: 99%