Automata-Based Study of Dynamic Access Control Policies
Ahmed Khoumsi
2023
Abstract
Access control policies (more briefly: policies) are used to filter accesses to resources. A policy is usually defined by a table of rules that specify which access requests (more briefly: requests) must be accepted and which ones must be rejected. In this paper, we study dynamic policies which do not have a common definition in the scientific community, but whose basic intuition is that the decision to accept or reject a request rq depends not only on rq, but also on the history of what have preceded rq. In our case, it is the history of events and requests that precede rq. An event indicates that a specific condition has just been met, for example “it is midnight”. We formally specify the history of events and requests by associating a guard and an assignment to each rule, and an assignment to each event. We show how to model, execute and analyze dynamic policies using an automata-based approach. In the analysis, we verify several properties of a dynamic policy, such as nonblocking, completeness, and absence of conflict. Deterministic as well as nondeterministic policies are considered.
DownloadPaper Citation
in Harvard Style
Khoumsi A. (2023). Automata-Based Study of Dynamic Access Control Policies. In Proceedings of the 9th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-624-8, pages 218-227. DOI: 10.5220/0011819700003405
in Bibtex Style
@conference{icissp23,
author={Ahmed Khoumsi},
title={Automata-Based Study of Dynamic Access Control Policies},
booktitle={Proceedings of the 9th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2023},
pages={218-227},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011819700003405},
isbn={978-989-758-624-8},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 9th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Automata-Based Study of Dynamic Access Control Policies
SN - 978-989-758-624-8
AU - Khoumsi A.
PY - 2023
SP - 218
EP - 227
DO - 10.5220/0011819700003405