Specification and verification of security requirements in a programming model for decentralized CSCW systems

Tanvir Ahmed; Anand R Tripathi

doi:10.1145/1237500.1237503

Specification and verification of security requirements in a programming model for decentralized CSCW systems

Tanvir Ahmed, Anand R Tripathi

Computer Science and Engineering

Research output: Contribution to journal › Article › peer-review

16 Scopus citations

Abstract

We present, in this paper, a role-based model for programming distributed CSCW systems. This model supports specification of dynamic security and coordination requirements in such systems. We also present here a model-checking methodology for verifying the security properties of a design expressed in this model. The verification methodology presented here is used to ensure correctness and consistency of a design specification. It is also used to ensure that sensitive security requirements cannot be violated when policy enforcement functions are distributed among the participants. Several aspect-specific verification models are developed to check security properties, such as task-flow constraints, information flow, confidentiality, and assignment of administrative privileges.

Original language	English (US)
Article number	7
Journal	ACM Transactions on Information and System Security
Volume	10
Issue number	2
DOIs	https://doi.org/10.1145/1237500.1237503
State	Published - May 1 2007

Keywords

Finite state-based model checking
Methodology for access-control policy design
Role-based access control
Security policy specification

Access

10.1145/1237500.1237503

OpenUrl availability

Full text

Cite this

@article{bfd470bb805546e49bef555f0f8efa64,

title = "Specification and verification of security requirements in a programming model for decentralized CSCW systems",

abstract = "We present, in this paper, a role-based model for programming distributed CSCW systems. This model supports specification of dynamic security and coordination requirements in such systems. We also present here a model-checking methodology for verifying the security properties of a design expressed in this model. The verification methodology presented here is used to ensure correctness and consistency of a design specification. It is also used to ensure that sensitive security requirements cannot be violated when policy enforcement functions are distributed among the participants. Several aspect-specific verification models are developed to check security properties, such as task-flow constraints, information flow, confidentiality, and assignment of administrative privileges.",

keywords = "Finite state-based model checking, Methodology for access-control policy design, Role-based access control, Security policy specification",

author = "Tanvir Ahmed and Tripathi, {Anand R}",

year = "2007",

month = may,

day = "1",

doi = "10.1145/1237500.1237503",

language = "English (US)",

volume = "10",

journal = "ACM Transactions on Information and System Security",

issn = "1094-9224",

publisher = "Association for Computing Machinery (ACM)",

number = "2",

}

TY - JOUR

T1 - Specification and verification of security requirements in a programming model for decentralized CSCW systems

AU - Ahmed, Tanvir

AU - Tripathi, Anand R

PY - 2007/5/1

Y1 - 2007/5/1

N2 - We present, in this paper, a role-based model for programming distributed CSCW systems. This model supports specification of dynamic security and coordination requirements in such systems. We also present here a model-checking methodology for verifying the security properties of a design expressed in this model. The verification methodology presented here is used to ensure correctness and consistency of a design specification. It is also used to ensure that sensitive security requirements cannot be violated when policy enforcement functions are distributed among the participants. Several aspect-specific verification models are developed to check security properties, such as task-flow constraints, information flow, confidentiality, and assignment of administrative privileges.

AB - We present, in this paper, a role-based model for programming distributed CSCW systems. This model supports specification of dynamic security and coordination requirements in such systems. We also present here a model-checking methodology for verifying the security properties of a design expressed in this model. The verification methodology presented here is used to ensure correctness and consistency of a design specification. It is also used to ensure that sensitive security requirements cannot be violated when policy enforcement functions are distributed among the participants. Several aspect-specific verification models are developed to check security properties, such as task-flow constraints, information flow, confidentiality, and assignment of administrative privileges.

KW - Finite state-based model checking

KW - Methodology for access-control policy design

KW - Role-based access control

KW - Security policy specification

UR - http://www.scopus.com/inward/record.url?scp=34249723796&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=34249723796&partnerID=8YFLogxK

U2 - 10.1145/1237500.1237503

DO - 10.1145/1237500.1237503

M3 - Article

AN - SCOPUS:34249723796

SN - 1094-9224

VL - 10

JO - ACM Transactions on Information and System Security

JF - ACM Transactions on Information and System Security

IS - 2

M1 - 7

ER -

Specification and verification of security requirements in a programming model for decentralized CSCW systems

Abstract

Keywords

Access

OpenUrl availability

Other files and links

Fingerprint

Cite this