A note on the formalisation of UCON

Authors:
Helge Janicke;Antonio Cau;Hussein Zedan
Affiliations:
De Montfort University, Leicester, UK;De Montfort University, Leicester, UK;De Montfort University, Leicester, UK
Venue:
Proceedings of the 12th ACM symposium on Access control models and technologies
Year:
2007

Citing 6
Cited 6

The temporal logic of actions

ACM Transactions on Programming Languages and Systems (TOPLAS)
Efficient checking of temporal integrity constraints using bounded history encoding

ACM Transactions on Database Systems (TODS)
Flexible support for multiple access control policies

ACM Transactions on Database Systems (TODS)
A logical specification for usage control

Proceedings of the ninth ACM symposium on Access control models and technologies
Formal model and policy specification of usage control

ACM Transactions on Information and System Security (TISSEC)
A Compositional Event & Time-Based Policy Model

POLICY '06 Proceedings of the Seventh IEEE International Workshop on Policies for Distributed Systems and Networks

Towards a Usage Control Policy Specification with Petri Nets

OTM '09 Proceedings of the Confederated International Conferences, CoopIS, DOA, IS, and ODBASE 2009 on On the Move to Meaningful Internet Systems: Part II
Monitoring security policies with metric first-order temporal logic

Proceedings of the 15th ACM symposium on Access control models and technologies
Policy monitoring in first-order temporal logic

CAV'10 Proceedings of the 22nd international conference on Computer Aided Verification
Survey: Usage control in computer security: A survey

Computer Science Review
Challenging issues of UCON in modern computing environments

Proceedings of the Fifth Balkan Conference in Informatics
On the automated analysis of safety in usage control: a new decidability result

NSS'12 Proceedings of the 6th international conference on Network and System Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Usage Control (UCON) Models, similar to Access Control Models, control and govern the users' access to resources and services that are available in the system. One of the major improvements of UCON over traditional access control models is the continuity of the control and the concept of attribute mutability. In this paper we provide an alternative formalisation of the UCON model that relaxes many of the assumptions made in earlier formalisations of the model. We question the enforceability of UCON policies as described by previous formalisations and improve on it.