Using Spatio-Temporal Role Based Access Control for Physical Access Control Specification: Towards Effective Cyber-Physical Systems
Emsaieb Geepalla1, Nassir Abuhamoud2
1Dr. Emsaieb Geepalla, School of Electronic Engineering, Sebha University, Sebha, Libya.
2Dr. Nassir Abuhamoud, School of Electronic Engineering, Sebha University, Sebha, Libya.
Manuscript received on May 28, 2015. | Revised Manuscript received on June 10, 2015. | Manuscript published on June 15, 2015. | PP: 30-37 | Volume-3 Issue-7, June 2015. | Retrieval Number: G0898063715/2015©BEIESP
Open Access | Ethics and Policies | Cite | Mendeley
© The Authors. Published By: Blue Eyes Intelligence Engineering and Sciences Publication (BEIESP). This is an open access article under the CC BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)
Abstract: Spatio-Temporal Role-based access control (STRBAC) has been acknowledged as an effective mechanism for specifying access control policies for cyber systems. However, it is not yet clear how a STR- BAC model can be used for specifying access control policies for physical systems. In this paper, we propose a Spatio-Temporal Role Based Access Control (STRBAC) system for modeling the physical access control specification. However, any comprehensive access control model such as STRBAC requires verification mechanisms to ensure the consistency of access control specification. As a result, this paper makes the use of Alloy to perform the analysis of the STRBAC specification. To achieve this, the paper make the use of AC2Alloy to automate the transformation between STRBAC specification and Alloy. With the help of an example, this paper shows how the STRBAC model is transformed into Alloy using our AC2Alloy, and then the produced Alloy model will be analyzed using Alloy Analyzer to detect inconsistencies in the STRBAC specification.
Keywords: Spatio-temporal role based access control, alloy, ac2alloy, physical system.