Analyzing RBAC Security Policy of Implementation Using AST

Security policy is a critical property in software applications which require high levels of safety and security. It has to be clearly specified in requirement documents and its implementation must be conformed to the specification. In this paper, we propose an approach to check if the implementation is in accordance with its security policy specification. We use the Abstract Syntax Tree (AST), another manner of expressing the program, to analyze the source code and specify user permission policy in software systems by Role-Based Access Control (RBAC).

Description

Associated research group: Critical Systems Research Group

Collections

University of Minnesota Software Engineering Center (UMSEC) Publications

Previously Published Citation

Proceedings of the 2009 International Conference on Knowledge and Systems Engineering (KSE '09)

Suggested citation

Pham, Hung T.; Truong, Ninh-Thuan; Nguyen, Viet-Ha. (2009). Analyzing RBAC Security Policy of Implementation Using AST. Retrieved from the University Digital Conservancy, https://hdl.handle.net/11299/217425.

Content distributed via the University Digital Conservancy may be subject to additional license and use restrictions applied by the depositor. By using these files, users agree to the Terms of Use. Materials in the UDC may contain content that is disturbing and/or harmful. For more information, please see our statement on harmful content in digital repositories.

University of Minnesota Twin Cities

University Digital Conservancy

Analyzing RBAC Security Policy of Implementation Using AST

View/Download File

Persistent link to this item

Statistics

Journal Title

Journal ISSN

Volume Title

Title

Authors

Published Date

Publisher

Type

Abstract

Keywords

Description

Related to

Replaces

License

Collections

Series/Report Number

Funding information

Isbn identifier

Doi identifier

Previously Published Citation

Suggested citation