Verification and Analysis of Access Control Policy with Colored Petri Net
A Trust and Context based Access Control model (TCAC)is proposed in this paper, which integrates trust value and context information of users into traditional role based access control. TCAC is flexible and dynamic to limit the authorizations to users. Verification and analysis of access control policy can help us understand the security requirements and states of systems. Colored Petri Net (CPN) extends the traditional Petri net, it can simply the net structure, and analyze the security and correctness of complicated systems before really constructing them. We present a CPN model of role activation/deactivation of TCAC policy, and discuss the color sets, places, arc expressions and guard functions in CPN model. The consistency of TCAc policy is verified based on CPN model and reachability analysis.
access control colored petri net verification
Fujun Feng Junshan Li
Dept. of Computer The Second Artillery Engineering College Xian,China Dept. of Computer The Second Artillery Engineering College Xian, China
国际会议
The International Conference on Communication Software and Networks(2009 IEEE通信软件与网络国际会议 ICCSN 2009)
成都
英文
610-614
2009-02-20(万方平台首次上网日期,不代表论文的发表时间)