A Novel Approach to White-Box Policy Analysis

Balasubramaniam, Jayalakshmi

A Novel Approach to White-Box Policy Analysis

Files

ucalgary_2013_balasubramaniam_jayalakshmi.pdf(1.21 MB)

Date

2013-01-25

Authors

Balasubramaniam, Jayalakshmi

Abstract

The access control systems in dynamic environments contain composite access control policies, that combine decisions from multiple component policies using policy combining algorithms. In such dynamic environments, analysis of policies is a challenge. In this thesis, I propose a white-box policy analysis Decision in Context (DIC), that would analyse component policies situated inside a composite policy. For generality, the DIC query is defined in an XACML-style policy composition framework. The DIC query is implemented via a reduction to either propositional satisfiability or pseudo boolean satisfiability instances, after which standard solvers can be invoked to complete the evaluation. Empirical analyses have been conducted to compare the relative efficiency of the SAT and PBS encodings. The latter is found to be the more effective encoding, in reducing DIC queries containing majority voting policy combining algorithms.

Keywords

Computer Science

Citation

Balasubramaniam, J. (2013). A Novel Approach to White-Box Policy Analysis (Master's thesis, University of Calgary, Calgary, Canada). Retrieved from https://prism.ucalgary.ca. doi:10.11575/PRISM/24928

URI

http://hdl.handle.net/11023/468

Collections

Open Theses and Dissertations

Full item page