...
  • 主题
高级搜索  >
历史搜索 清空历史
首页> 外文期刊>International journal of software engineering and knowledge engineering >MODEL CHECKING FOR VERIFICATION OF MANDATORY ACCESS CONTROL MODELS AND PROPERTIES
【24h】

MODEL CHECKING FOR VERIFICATION OF MANDATORY ACCESS CONTROL MODELS AND PROPERTIES

机译:强制访问控制模型和属性验证的模型检查

获取原文
获取原文并翻译 | 示例
           
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Mandatory access control (MAC) mechanisms control which users or processes have access to which resources in a system. MAC policies are increasingly specified to facilitate managing and maintaining access control. However, the correct specification of the policies is a very challenging problem. To formally and precisely capture the security properties that MAC should adhere to, MAC models are usually written to bridge the rather wide gap in abstraction between policies and mechanisms. In this paper, we propose a general approach for property verification for MAC models. The approach defines a standardized structure for MAC models, providing for both property verification and automated generation of test cases. The approach expresses MAC models in the specification language of a model checker and expresses generic access control properties in the property language. Then the approach uses the model checker to verify the integrity, coverage, and confinement of these properties for the MAC models and finally generates test cases via combinatorial covering array for the system implementations of the models.
机译:强制访问控制(MAC)机制控制哪些用户或进程有权访问系统中的哪些资源。 MAC策略越来越多地被指定来促进管理和维护访问控制。但是,正确制定策略是一个非常具有挑战性的问题。为了正式,准确地捕获MAC应该遵守的安全属性,通常编写MAC模型来弥合策略和机制之间抽象上的较大差距。在本文中,我们提出了一种用于MAC模型属性验证的通用方法。该方法为MAC模型定义了标准化的结构,提供了属性验证和测试用例的自动生成。该方法用模型检查器的规范语言表达MAC模型,并用属性语言表达通用访问控制属性。然后,该方法使用模型检查器来验证MAC模型这些属性的完整性,覆盖范围和限制,最后通过组合覆盖数组为模型的系统实现生成测试用例。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号