Cargando…
A Formal Validation Approach for XACML 3.0 Access Control Policy
Access control systems represent a security mechanism to regulate the access to system resources, and XACML is the standard language for specifying, storing and deploying access control policies. The verbosity and complexity of XACML syntax as well as the natural language semantics provided by the s...
| Autores principales: | , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2022
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9026700/ https://www.ncbi.nlm.nih.gov/pubmed/35458969 http://dx.doi.org/10.3390/s22082984 |
| _version_ | 1784691178002710528 |
|---|---|
| author | Caserio, Carmine Lonetti, Francesca Marchetti, Eda |
| author_facet | Caserio, Carmine Lonetti, Francesca Marchetti, Eda |
| author_sort | Caserio, Carmine |
| collection | PubMed |
| description | Access control systems represent a security mechanism to regulate the access to system resources, and XACML is the standard language for specifying, storing and deploying access control policies. The verbosity and complexity of XACML syntax as well as the natural language semantics provided by the standard make the verification and testing of these policies difficult and error-prone. In the literature, analysis techniques and access control languages formalizations are provided for verifiability and testability purposes. This paper provides three contributions: it provides a comprehensive formal specification of XACML 3.0 policy elements; it leverages the existing policy coverage criteria to be suitable for XACML 3.0; and it introduces a new set of coverage criteria to better focus the testing activities on the peculiarities of XACML 3.0. The application of the proposed coverage criteria to a policy example is described, and hints for future research directions are discussed. |
| format | Online Article Text |
| id | pubmed-9026700 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2022 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-90267002022-04-23 A Formal Validation Approach for XACML 3.0 Access Control Policy Caserio, Carmine Lonetti, Francesca Marchetti, Eda Sensors (Basel) Article Access control systems represent a security mechanism to regulate the access to system resources, and XACML is the standard language for specifying, storing and deploying access control policies. The verbosity and complexity of XACML syntax as well as the natural language semantics provided by the standard make the verification and testing of these policies difficult and error-prone. In the literature, analysis techniques and access control languages formalizations are provided for verifiability and testability purposes. This paper provides three contributions: it provides a comprehensive formal specification of XACML 3.0 policy elements; it leverages the existing policy coverage criteria to be suitable for XACML 3.0; and it introduces a new set of coverage criteria to better focus the testing activities on the peculiarities of XACML 3.0. The application of the proposed coverage criteria to a policy example is described, and hints for future research directions are discussed. MDPI 2022-04-13 /pmc/articles/PMC9026700/ /pubmed/35458969 http://dx.doi.org/10.3390/s22082984 Text en © 2022 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Caserio, Carmine Lonetti, Francesca Marchetti, Eda A Formal Validation Approach for XACML 3.0 Access Control Policy |
| title | A Formal Validation Approach for XACML 3.0 Access Control Policy |
| title_full | A Formal Validation Approach for XACML 3.0 Access Control Policy |
| title_fullStr | A Formal Validation Approach for XACML 3.0 Access Control Policy |
| title_full_unstemmed | A Formal Validation Approach for XACML 3.0 Access Control Policy |
| title_short | A Formal Validation Approach for XACML 3.0 Access Control Policy |
| title_sort | formal validation approach for xacml 3.0 access control policy |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9026700/ https://www.ncbi.nlm.nih.gov/pubmed/35458969 http://dx.doi.org/10.3390/s22082984 |
| work_keys_str_mv | AT caseriocarmine aformalvalidationapproachforxacml30accesscontrolpolicy AT lonettifrancesca aformalvalidationapproachforxacml30accesscontrolpolicy AT marchettieda aformalvalidationapproachforxacml30accesscontrolpolicy AT caseriocarmine formalvalidationapproachforxacml30accesscontrolpolicy AT lonettifrancesca formalvalidationapproachforxacml30accesscontrolpolicy AT marchettieda formalvalidationapproachforxacml30accesscontrolpolicy |