RBAC-PAT: A Policy Analysis Tool for Role Based Access Control

Authors:
Mikhail I. Gofman;Ruiqi Luo;Ayla C. Solomon;Yingbin Zhang;Ping Yang;Scott D. Stoller
Affiliations:
Dept. of Computer Science, Binghamton University, USA NY 13902;Dept. of Computer Science, Binghamton University, USA NY 13902;Dept. of Computer Science, Wellesley College, Wellesley, USA MA 02481;Dept. of Computer Science, Binghamton University, USA NY 13902;Dept. of Computer Science, Binghamton University, USA NY 13902;Dept. of Computer Science, Stony Brook University, Stony Brook, USA NY 11794
Venue:
TACAS '09 Proceedings of the 15th International Conference on Tools and Algorithms for the Construction and Analysis of Systems: Held as Part of the Joint European Conferences on Theory and Practice of Software, ETAPS 2009,
Year:
2009

Citing 4
Cited 8

The ARBAC97 model for role-based administration of roles

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
Information flow analysis of an RBAC system

SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
Policy Analysis for Administrative Role Based Access Control

CSFW '06 Proceedings of the 19th IEEE workshop on Computer Security Foundations
Efficient policy analysis for administrative role based access control

Proceedings of the 14th ACM conference on Computer and communications security

Towards an integrated approach to role engineering

Proceedings of the 3rd ACM workshop on Assurable and usable security configuration
Automatic error finding in access-control policies

Proceedings of the 18th ACM conference on Computer and communications security
A visualization tool for evaluating access control policies in facebook-style social network systems

Proceedings of the 27th Annual ACM Symposium on Applied Computing
Symbolic backward reachability with effectively propositional logic

Formal Methods in System Design
Mohawk: Abstraction-Refinement and Bound-Estimation for Verifying Access Control Policies

ACM Transactions on Information and System Security (TISSEC)
Policy analysis for self-administrated role-based access control

TACAS'13 Proceedings of the 19th international conference on Tools and Algorithms for the Construction and Analysis of Systems
Policy analysis for administrative role based access control without separate administration

DBSec'13 Proceedings of the 27th international conference on Data and Applications Security and Privacy XXVII
Scalable automated symbolic analysis of administrative role-based access control policies by SMT solving

Journal of Computer Security - STM'10

Quantified Score

Hi-index	0.00

Visualization

Abstract

Role-Based Access Control (RBAC) has been widely used for expressing access control policies. Administrative Role-Based Access Control (ARBAC) specifies how an RBAC policy may be changed by each administrator. Because sequences of changes by different administrators may interact in unintended ways, it is often difficult to fully understand the effect of an ARBAC policy by simple inspection. This paper presents RBAC-PAT, a tool for analyzing RBAC and ARBAC policies, which supports analysis of various properties including reachability, availability, containment, weakest precondition, dead roles, and information flows.