TY - JOUR
T1 - Specification and verification of security requirements in a programming model for decentralized CSCW systems
AU - Ahmed, Tanvir
AU - Tripathi, Anand R
PY - 2007/5/1
Y1 - 2007/5/1
N2 - We present, in this paper, a role-based model for programming distributed CSCW systems. This model supports specification of dynamic security and coordination requirements in such systems. We also present here a model-checking methodology for verifying the security properties of a design expressed in this model. The verification methodology presented here is used to ensure correctness and consistency of a design specification. It is also used to ensure that sensitive security requirements cannot be violated when policy enforcement functions are distributed among the participants. Several aspect-specific verification models are developed to check security properties, such as task-flow constraints, information flow, confidentiality, and assignment of administrative privileges.
AB - We present, in this paper, a role-based model for programming distributed CSCW systems. This model supports specification of dynamic security and coordination requirements in such systems. We also present here a model-checking methodology for verifying the security properties of a design expressed in this model. The verification methodology presented here is used to ensure correctness and consistency of a design specification. It is also used to ensure that sensitive security requirements cannot be violated when policy enforcement functions are distributed among the participants. Several aspect-specific verification models are developed to check security properties, such as task-flow constraints, information flow, confidentiality, and assignment of administrative privileges.
KW - Finite state-based model checking
KW - Methodology for access-control policy design
KW - Role-based access control
KW - Security policy specification
UR - http://www.scopus.com/inward/record.url?scp=34249723796&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=34249723796&partnerID=8YFLogxK
U2 - 10.1145/1237500.1237503
DO - 10.1145/1237500.1237503
M3 - Article
AN - SCOPUS:34249723796
SN - 1094-9224
VL - 10
JO - ACM Transactions on Information and System Security
JF - ACM Transactions on Information and System Security
IS - 2
M1 - 7
ER -