Lancaster EPrints

Formal Verification of Usage Control Models:A Case Study of UseCON Using TLA+

Gouglidis, Antonios and Grompanopoulos, Christos and Mavridou, Anastasia (2018) Formal Verification of Usage Control Models:A Case Study of UseCON Using TLA+. In: Proceedings of the 1st International Workshop on Methods and Tools for Rigorous System Design (MeTRiD 2018). EPTCS . EPTCS, pp. 52-64.

[img]
Preview
PDF (pre-proceedings-formal (2)) - Submitted Version
Download (1015Kb) | Preview

    Abstract

    Usage control models provide an integration of access control, digital rights, and trust management. To achieve this integration, usage control models support additional concepts such as attribute mutability and continuity of decision. However, these concepts may introduce an additional level of complexity to the underlying model, rendering its definition a cumbersome and prone to errors process. Applying a formal verification technique allows for a rigorous analysis of the interactions amongst the components, and thus for formal guarantees in respect of the correctness of a model. In this paper, we elaborate on a case study, where we express the high-level functional model of the UseCON usage control model in the TLA+ formal specification language, and verify its correctness for <=12 uses in both of its supporting authorisation models.

    Item Type: Contribution in Book/Report/Proceedings
    Subjects:
    Departments: Faculty of Science and Technology > School of Computing & Communications
    ID Code: 124123
    Deposited By: ep_importer_pure
    Deposited On: 20 Mar 2018 13:34
    Refereed?: Yes
    Published?: Published
    Last Modified: 20 Mar 2019 01:29
    Identification Number:
    URI: http://eprints.lancs.ac.uk/id/eprint/124123

    Actions (login required)

    View Item