Reasoning about XACML policies using CSP

Proceedings of the ACM Conference on Computer and Communications Security

Volumn , Issue , 2005, Pages 28-35

  Bryans, Jeremy ^a  

^a NEWCASTLE UNIVERSITY   (United Kingdom)

Author keywords

Access Control; CSP; Semantic Models; XACML

Indexed keywords

ACCESS CONTROL LANGUAGE; ACCESS CONTROL POLICIES; CSP; PROCESS ALGEBRAS; SEMANTIC MODEL; XACML POLICIES;

LINGUISTICS; MANAGEMENT; MODEL CHECKING; SECURITY SYSTEMS; SEMANTICS; WEB SERVICES;

ACCESS CONTROL;

EID: 77954326067     PISSN: 15437221     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1103022.1103028     Document Type: Conference Paper

References (14)

1. K.Bhargavan,C.Fournet,and A. Gordon.A Semantics for Web Services Authentication. Theoretical Computer Science, 340(1):102-153, June 2005.
2. Sabrina De Capitani di Vimercati, Stefano Paraboschi, and Pierangela Samarati. Access control: principles and solutions. Software - Practice and Experience, 33:397-421, 2003.
3. Kathi Fisler, Shiriram Krishnamurthi, Leo Meyerovich, and Michael Carl Tschantz. Verification and Change-Impact Analysis of Access-Control Policies. In ICSE, 2005.
4. D. Guelev, M. Ryan, and P. Schobbens. Model-checking Access Control Policies. In ISC, 2004.
5. C.A.R. Hoare. Commmunicating Sequential Processes. Prentice-Hall, 1985.
6. E Kleiner and A.W. Roscoe. Web Services Security: a preliminary study using Casper and FDR. In ARPSA, pages 160-174, 2004.
7. Formal Systems (Europe) Ltd. Failures-Divergences Refinement: User Manual and Tutorial. Oxford University.
8. T. Moses. extensible Access Control Markup Language (XACML) version 1.0. Technical report, OASIS, Feb 2003.
9. A. W. Roscoe. The Theory and Practice of Concurrency. Pearson Education, 1998.
10. Peter Ryan. Mathematical models of computer security. In Riccardo Focardi and Roberto Gorrieri, editors, Foundations ofSecurity Analysis and Design, volume 2171 of LNCS, 2000.
11. Peter Ryan and Ragni Ryvold Arnesen. A Process Algebraic Approach to Security Policies. In Ehud Gudes and Sujeet Shenoi, editors, DBSec, volume 256 of IFIP Conference Proceedings, pages 301-312. Kluwer, 2002.
12. Peter Ryan, Steve Schneider, Michael Goldsmith, GavinLowe, andBillRoscoe. Modelling and Analysis ofSecurity Protocols. Pearson Education, 2001.
13. Steve Schneider. Concurrent and Real-time Systems: the CSP approach. John Wiley & Sons, 2000.
14. N. Zhang, M. Ryan, and D. Guelev. Synthesising Verified Access Control Systems in XACML. In FMSE, 2004.