Verification of SGAC Access Control Policies Using Alloy and ProB

Abstract : This paper investigates the verification ofaccess control policies for SGAC, a new healthcare access-control model, using Alloy and ProB, two first orderlogic model checkers based on distinct technologies.SGAC supports permission and prohibition, ruleinheritance among subjects and resources and conflictsresolution. In order to protect patient privacy while ensuringeffective caregiving in safety-critical situations, we check different properties such as accessibility, ineffectiverule detection. Our performance results showthat ProB performs two orders of magnitude betterthan Alloy. Results are promising enough to considerProB for verifying patient policies in SGAC.
Type de document :
Communication dans un congrès
18th IEEE International Symposium on High Assurance Systems Engineering, HASE 2017, Jan 2017, Singapore, Singapore. IEEE Computer Society, PROCEEDINGS HASE 2017: 18th IEEE International Symposium on High Assurance Systems Engineering, pp.120 - 123, 2017, 〈10.1109/HASE.2017.24〉
Liste complète des métadonnées

https://hal.archives-ouvertes.fr/hal-01574899
Contributeur : Régine Laleau <>
Soumis le : mercredi 16 août 2017 - 19:31:30
Dernière modification le : jeudi 11 janvier 2018 - 06:19:29

Identifiants

Citation

Nghi Huynh, Marc Frappier, Amel Mammar, Régine Laleau. Verification of SGAC Access Control Policies Using Alloy and ProB. 18th IEEE International Symposium on High Assurance Systems Engineering, HASE 2017, Jan 2017, Singapore, Singapore. IEEE Computer Society, PROCEEDINGS HASE 2017: 18th IEEE International Symposium on High Assurance Systems Engineering, pp.120 - 123, 2017, 〈10.1109/HASE.2017.24〉. 〈hal-01574899〉

Partager

Métriques

Consultations de la notice

309