Title :
Verification of Interoperability Security Policies by Model Checking
Author :
El Maarabani, M. ; Cavalli, Ana ; Hwang, Iksoon ; Zaïdi, Fatiha
Author_Institution :
IT/TELECOM & Manage. SudParis, Evry, France
Abstract :
Access control policies are the key point for a secured interaction in business community. In general, an information system has to include an interoperability access control security policy to regulate the access from other systems to its resources. The security policy specifies a set of rules that defines the privileges of any subject accessing to the information system resources. In this paper we provide an approach to verify the correctness of contextual based interoperability access control security policies which are integrated in a system model. Security rules are initially described using the organization to organization model (O2O). We first propose an approach to transform O2O security rules to the well known Linear Temporal Logic (LTL). In order to instantiate the LTL formulae from a set of O2O security rules, we provided a mapping between the elements of the O2O security rule and the elements of the functional model in which the security rules are integrated. The resulted LTL formulae are used to verify the correctness of the security rules by model checking.
Keywords :
authorisation; formal verification; information systems; open systems; temporal logic; access control security policy; business community; contextual based interoperability; information system; interoperability security policy; linear temporal logic; model checking; security rule; system access; system model; verification; Access control; Context; Context modeling; Hospitals; Organizations; LTL; OrBAC; interoperability security policy; model-checking;
Conference_Titel :
High-Assurance Systems Engineering (HASE), 2011 IEEE 13th International Symposium on
Conference_Location :
Boca Raton, FL
Print_ISBN :
978-1-4673-0107-7
DOI :
10.1109/HASE.2011.17
