The Missing Piece of the ABAC Puzzle: A Modeling Scheme for Dynamic Analysis

Marius Schlegel; Peter Amthor

doi:10.5220/0010556202340246

The Missing Piece of the ABAC Puzzle: A Modeling Scheme for Dynamic Analysis

Marius Schlegel, Peter Amthor

2021

Abstract

Attribute-based access control (ABAC) has made its way into the mainstream of engineering secure IT systems. At the same time, ABAC models are still lagging behind well-understood, yet more basic access control models in terms of dynamic analyzability. This has led to a plethora of methods, languages, and tools for designing and integrating ABAC policies, but only few to formally reason about them in the process. We present DABAC, a modeling scheme to pick up that missing piece and put it right into its place in the security engineering workflow. Based on an automaton calculus, we demonstrate how DABAC can be leveraged as a holistic formal basis for engineering ABAC models, analyzing their dynamic properties, and providing a functional specification for their implementation. This sets the stage for comprehensive tool support in building future ABAC systems.

Download

Paper Citation

in Harvard Style

Schlegel M. and Amthor P. (2021). The Missing Piece of the ABAC Puzzle: A Modeling Scheme for Dynamic Analysis. In Proceedings of the 18th International Conference on Security and Cryptography - Volume 1: SECRYPT, ISBN 978-989-758-524-1, pages 234-246. DOI: 10.5220/0010556202340246

in Bibtex Style

@conference{secrypt21,
author={Marius Schlegel and Peter Amthor},
title={The Missing Piece of the ABAC Puzzle: A Modeling Scheme for Dynamic Analysis},
booktitle={Proceedings of the 18th International Conference on Security and Cryptography - Volume 1: SECRYPT,},
year={2021},
pages={234-246},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010556202340246},
isbn={978-989-758-524-1},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 18th International Conference on Security and Cryptography - Volume 1: SECRYPT,
TI - The Missing Piece of the ABAC Puzzle: A Modeling Scheme for Dynamic Analysis
SN - 978-989-758-524-1
AU - Schlegel M.
AU - Amthor P.
PY - 2021
SP - 234
EP - 246
DO - 10.5220/0010556202340246