Analysis of Rewrite-Based Access Control Policies

@article{Kirchner2009AnalysisOR,
  title={Analysis of Rewrite-Based Access Control Policies},
  author={Claude Kirchner and H{\'e}l{\`e}ne Kirchner and Anderson Santana de Oliveira},
  journal={Electr. Notes Theor. Comput. Sci.},
  year={2009},
  volume={234},
  pages={55-75}
}
The rewrite-based approach provides executable specifications for security policies, which can be independently designed, verified, and then anchored on programs using a modular discipline. In this paper, we describe how to perform queries over these rule-based policies in order to increase the trust of the policy author on the correct behavior of the policy. The analysis we provide is founded on the narrowing process, which provides both the necessary abstraction for simulating executions of… CONTINUE READING
Highly Cited
This paper has 31 citations. REVIEW CITATIONS