A framework of composable access control definition, enforcement and assurance

Jaime A. Pavlich-Mariscal; Steven A. Demurjian; Laurent D. Michel

doi:10.1109/SCCC.2008.18

A framework of composable access control definition, enforcement and assurance

Jaime A. Pavlich-Mariscal
, Steven A. Demurjian
, Laurent D. Michel

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

5 Scopus citations

Abstract

This paper proposes an approach for secure software design and coding; and, it provides a formal underpinning for security assurance, i.e., a proof that the generated code correctly realizes security specifications. The base of the proposed approach is a set of security features [17] that separate security concerns from the main design. To create specific access control models, designers can select the features they require, compose them, and represent them through security diagrams [17], i.e., extensions to UML to represent security concerns. These security specifications are then transitioned into aspect-oriented enforcement code. To provide security assurance, this paper formalizes the application behavior using labeled transition systems and structural operational semantics; and it uses simulation relations to demonstrate the correctness of the secure code.

Original language	English
Title of host publication	Proceedings - International Conference of the Chilean Computer Science Society, SCCC 2008
Pages	13-22
Number of pages	10
DOIs	https://doi.org/10.1109/SCCC.2008.18
State	Published - 2008
Externally published	Yes
Event	27th International Conference of the Chilean Computer Science Society, SCCC 2008 - Punta Arenas, Chile Duration: 10 Nov 2008 → 14 Nov 2008

Publication series

Name	Proceedings - International Conference of the Chilean Computer Science Society, SCCC
ISSN (Print)	1522-4902

Conference

Conference	27th International Conference of the Chilean Computer Science Society, SCCC 2008
Country/Territory	Chile
City	Punta Arenas
Period	10/11/08 → 14/11/08

Access to Document

10.1109/SCCC.2008.18

Cite this

Pavlich-Mariscal, J. A., Demurjian, S. A., & Michel, L. D. (2008). A framework of composable access control definition, enforcement and assurance. In Proceedings - International Conference of the Chilean Computer Science Society, SCCC 2008 (pp. 13-22). Article 4685759 (Proceedings - International Conference of the Chilean Computer Science Society, SCCC). https://doi.org/10.1109/SCCC.2008.18

@inproceedings{91f2fb4c8fff471c937c17cb11ccb3ec,

title = "A framework of composable access control definition, enforcement and assurance",

abstract = "This paper proposes an approach for secure software design and coding; and, it provides a formal underpinning for security assurance, i.e., a proof that the generated code correctly realizes security specifications. The base of the proposed approach is a set of security features [17] that separate security concerns from the main design. To create specific access control models, designers can select the features they require, compose them, and represent them through security diagrams [17], i.e., extensions to UML to represent security concerns. These security specifications are then transitioned into aspect-oriented enforcement code. To provide security assurance, this paper formalizes the application behavior using labeled transition systems and structural operational semantics; and it uses simulation relations to demonstrate the correctness of the secure code.",

author = "Pavlich-Mariscal, \{Jaime A.\} and Demurjian, \{Steven A.\} and Michel, \{Laurent D.\}",

year = "2008",

doi = "10.1109/SCCC.2008.18",

language = "English",

isbn = "9780769534039",

series = "Proceedings - International Conference of the Chilean Computer Science Society, SCCC",

pages = "13--22",

booktitle = "Proceedings - International Conference of the Chilean Computer Science Society, SCCC 2008",

note = "27th International Conference of the Chilean Computer Science Society, SCCC 2008 ; Conference date: 10-11-2008 Through 14-11-2008",

}

Pavlich-Mariscal, JA, Demurjian, SA & Michel, LD 2008, A framework of composable access control definition, enforcement and assurance. in Proceedings - International Conference of the Chilean Computer Science Society, SCCC 2008., 4685759, Proceedings - International Conference of the Chilean Computer Science Society, SCCC, pp. 13-22, 27th International Conference of the Chilean Computer Science Society, SCCC 2008, Punta Arenas, Chile, 10/11/08. https://doi.org/10.1109/SCCC.2008.18

A framework of composable access control definition, enforcement and assurance. / Pavlich-Mariscal, Jaime A.; Demurjian, Steven A.; Michel, Laurent D.
Proceedings - International Conference of the Chilean Computer Science Society, SCCC 2008. 2008. p. 13-22 4685759 (Proceedings - International Conference of the Chilean Computer Science Society, SCCC).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A framework of composable access control definition, enforcement and assurance

AU - Pavlich-Mariscal, Jaime A.

AU - Demurjian, Steven A.

AU - Michel, Laurent D.

PY - 2008

Y1 - 2008

N2 - This paper proposes an approach for secure software design and coding; and, it provides a formal underpinning for security assurance, i.e., a proof that the generated code correctly realizes security specifications. The base of the proposed approach is a set of security features [17] that separate security concerns from the main design. To create specific access control models, designers can select the features they require, compose them, and represent them through security diagrams [17], i.e., extensions to UML to represent security concerns. These security specifications are then transitioned into aspect-oriented enforcement code. To provide security assurance, this paper formalizes the application behavior using labeled transition systems and structural operational semantics; and it uses simulation relations to demonstrate the correctness of the secure code.

AB - This paper proposes an approach for secure software design and coding; and, it provides a formal underpinning for security assurance, i.e., a proof that the generated code correctly realizes security specifications. The base of the proposed approach is a set of security features [17] that separate security concerns from the main design. To create specific access control models, designers can select the features they require, compose them, and represent them through security diagrams [17], i.e., extensions to UML to represent security concerns. These security specifications are then transitioned into aspect-oriented enforcement code. To provide security assurance, this paper formalizes the application behavior using labeled transition systems and structural operational semantics; and it uses simulation relations to demonstrate the correctness of the secure code.

UR - https://www.scopus.com/pages/publications/58049165369

U2 - 10.1109/SCCC.2008.18

DO - 10.1109/SCCC.2008.18

M3 - Conference contribution

AN - SCOPUS:58049165369

SN - 9780769534039

T3 - Proceedings - International Conference of the Chilean Computer Science Society, SCCC

SP - 13

EP - 22

BT - Proceedings - International Conference of the Chilean Computer Science Society, SCCC 2008

T2 - 27th International Conference of the Chilean Computer Science Society, SCCC 2008

Y2 - 10 November 2008 through 14 November 2008

ER -

A framework of composable access control definition, enforcement and assurance

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this