Rights statement: The final publication is available at Springer via http://dx.doi.org/10.1007/s10009-020-00600-0
Accepted author manuscript, 818 KB, PDF document
Available under license: CC BY-NC: Creative Commons Attribution-NonCommercial 4.0 International License
Final published version
Research output: Contribution to Journal/Magazine › Journal article › peer-review
Research output: Contribution to Journal/Magazine › Journal article › peer-review
}
TY - JOUR
T1 - Specifying and Verifying Usage Control Models and Policies in TLA+
AU - Grompanopoulos, Christos
AU - Gouglidis, Antonios
AU - Mavridou, Anastasia
N1 - The final publication is available at Springer via http://dx.doi.org/10.1007/s10009-020-00600-0
PY - 2021/10/31
Y1 - 2021/10/31
N2 - Novel computing paradigms, e.g., the Cloud, introduce new requirements with regard to access control such as utilization of historical information and continuity of decision. However, these concepts may introduce an additional level of complexity to the underpinning model, rendering its definition and verification a cumbersome and prone to errors process. Using a formal language to specify a model and formally verify it may lead to a rigorous definition of the interactions amongst its components, and the provision of formal guarantees for its correctness. In this paper, we consider a case study where we specify a formal model in TLA+ for both a policy-neutral and policy-specific UseCON usage control model. Through that, we anticipate to shed light in the analysis and verification of usage control models and policies by sharing our experience when using TLA+ specific tools.
AB - Novel computing paradigms, e.g., the Cloud, introduce new requirements with regard to access control such as utilization of historical information and continuity of decision. However, these concepts may introduce an additional level of complexity to the underpinning model, rendering its definition and verification a cumbersome and prone to errors process. Using a formal language to specify a model and formally verify it may lead to a rigorous definition of the interactions amongst its components, and the provision of formal guarantees for its correctness. In this paper, we consider a case study where we specify a formal model in TLA+ for both a policy-neutral and policy-specific UseCON usage control model. Through that, we anticipate to shed light in the analysis and verification of usage control models and policies by sharing our experience when using TLA+ specific tools.
KW - Authorization models
KW - Concurrency
KW - Model checking
KW - UseCON
U2 - 10.1007/s10009-020-00600-0
DO - 10.1007/s10009-020-00600-0
M3 - Journal article
VL - 23
SP - 685
EP - 700
JO - International Journal on Software Tools for Technology Transfer
JF - International Journal on Software Tools for Technology Transfer
SN - 1433-2779
IS - 5
ER -