Modelling fine-grained access control policies in grids

Benjamin Yowell Yousif Aziz

Research output: Contribution to journalArticlepeer-review

235 Downloads (Pure)

Abstract

This paper presents an abstract specification of an enforcement mechanism of usage control for Grids, and verifies formally that such mechanism enforces UCON policies. Our technique is based on KAOS, a goal-oriented requirements engineering methodology with a formal LTL-based language and semantics. KAOS is used in a bottom-up form. We abstract the specification of the enforcement mechanism from current implementations of usage control for Grids. The result of this process is agent and operation models that describe the main components and operations of the enforcement mechanism. KAOS is used in top-down form by applying goal-refinement in order to refine UCON policies. The result of this process is a goal-refinement tree, which shows how a goal (policy) can be decomposed into sub-goals. Verification that a policy can be enforced is then equivalent to prove that a goal can be implemented by the enforcement mechanism represented by the agent and operation models.
Original languageEnglish
Pages (from-to)477-493
JournalJournal of Grid Computing
Volume14
Issue number3
Early online date29 Sept 2015
DOIs
Publication statusPublished - Sept 2015

Keywords

  • Access Control
  • Grid Authorisation
  • Usage Control
  • WNU

Fingerprint

Dive into the research topics of 'Modelling fine-grained access control policies in grids'. Together they form a unique fingerprint.

Cite this