A Role-Based Access Control Policy Verification Framework for Real-Time Systems

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Basit Shafiq Articles by Ammar Masood Articles by James Joshi Articles by Arif Ghafoor

10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems

Sedona, Arizona

February 02-February 04

ISBN: 0-7695-2347-1

	ASCII Text	x
	Basit Shafiq, Ammar Masood, James Joshi, Arif Ghafoor, "A Role-Based Access Control Policy Verification Framework for Real-Time Systems," Object-Oriented Real-Time Dependable Systems, IEEE International Workshop on, pp. 13-20, 10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems, 2005.

	BibTex	x
	@article{ 10.1109/WORDS.2005.11, author = {Basit Shafiq and Ammar Masood and James Joshi and Arif Ghafoor}, title = {A Role-Based Access Control Policy Verification Framework for Real-Time Systems}, journal ={Object-Oriented Real-Time Dependable Systems, IEEE International Workshop on}, volume = {0}, year = {2005}, issn = {1530-1443}, pages = {13-20}, doi = {http://doi.ieeecomputersociety.org/10.1109/WORDS.2005.11}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Object-Oriented Real-Time Dependable Systems, IEEE International Workshop on TI - A Role-Based Access Control Policy Verification Framework for Real-Time Systems SN - 1530-1443 SP13 EP20 A1 - Basit Shafiq, A1 - Ammar Masood, A1 - James Joshi, A1 - Arif Ghafoor, PY - 2005 KW - null VL - 0 JA - Object-Oriented Real-Time Dependable Systems, IEEE International Workshop on ER -

Basit Shafiq, Purdue University

Ammar Masood, Purdue University

James Joshi, Univ. of Pittsburgh

Arif Ghafoor, Purdue University

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/WORDS.2005.11

This paper presents a framework for verifying the access control requirements of real-time application systems such as workflow management systems and active databases. The temporal and event-based semantics of these applications can be expressed using event-driven Role Based Access Control (RBAC) model. Any comprehensive access control model such as RBAC requires verification and validation mechanisms to ensure the consistency of access control specification. An inconsistent access control specification exposes the underlying system to numerous vulnerabilities and security risks. In this paper, we propose a Petri-Net based framework for verifying the correctness of event-driven RBAC policies.

Citation:

Basit Shafiq, Ammar Masood, James Joshi, Arif Ghafoor, "A Role-Based Access Control Policy Verification Framework for Real-Time Systems," words, pp.13-20, 10th IEEE International Workshop on Object-Oriented Real-Time Dependable Systems, 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.