NOTICE: Due to a lapse in annual appropriations, most of this website is not being updated. Learn more.

Form submissions will still be accepted but will not receive responses at this time. Sections of this site for programs using non-appropriated funds (such as NVLAP) or those that are excepted from the shutdown (such as CHIPS and NVD) will continue to be updated.

U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

Property Verification for Generic Access Control Models

Published

Author(s)

Chung Tong Hu, David R. Kuhn, Tao Xie

Abstract

To formally and precisely capture the security properties that access control should adhere to, access control models are usually written to bridge the rather wide gap in abstraction between policies and mechanisms. In this paper, we propose a new general approach for property verification for access control models. The approach defines a standardized structure for access control models, providing for both property verification and automated generation of test cases. The approach expresses access control models in the specification language of a model checker and expresses generic access control properties in the property language. Then the approach uses the model checker to verify these properties for the access control models and generates test cases via combinatorial covering array for the system implementations of the models.
Proceedings Title
Proceedings of the 5th International Conference on Embedded and Ubiquitous Computing (EUC 2008)
Volume
2
Conference Dates
December 17-20, 2008
Conference Location
Shanghai
Conference Title
2008 IEEE/IFIP International Symposium on Trust, Security, and Privacy for Pervasive Applications (TSP-08)
Pub Type
Conferences

Download Paper

https://doi.org/10.1109/EUC.2008.22

Keywords

access control, combinatorial testing, modeling, software assurance
Cybersecurity and privacy

Citation

, C. , Kuhn, D. and Xie, T. (2008), Property Verification for Generic Access Control Models, Proceedings of the 5th International Conference on Embedded and Ubiquitous Computing (EUC 2008), Shanghai, -1, [online], https://doi.org/10.1109/EUC.2008.22 (Accessed October 13, 2025)

Issues

If you have any questions about this publication or are having problems accessing it, please contact [email protected].

Created December 20, 2008, Updated November 10, 2018
Was this page helpful?