Access Control Systems
Access control systems are a pervasive component in modern computer systems, being used to moderate access to resources such as files, mobile devices, databases, and web services. As systems become more sophisticated, the policies which regulate access controls become increasingly dynamic, complex, and prone to errors. Our research develops languages and enforcement mechanisms that enable users to administer access controls based on their requirements of a system's behaviour. Furthermore, we develop formalisms to model access control systems, allowing us to verify their correctness.
People: Andrew Brown, Masoud Koleini, Derrick Newton, Olufunmilola Onolaja, Hasan Qunoo, Eike Ritter, Mark Ryan, Hayo Thielecke.
Publications
8 publications:
- [BrownRyan2008] Andrew Brown and Mark Ryan. Synthesising Monitors from High-level Policies for the Safe Execution of Untrusted Software. In Fourth Information Security Practice and Experience Conference (ISPEC 2008), Springer. 2008.
- [DelauneKremerRyan2008Bisimulation] Stéphanie Delaune, Steve Kremer and Mark Ryan. Symbolic Bisimulation for the applied pi Calculus. Submitted JCS. 2008.
- [BrownRyan2008MobileDevices] Andrew Brown and Mark Ryan. Monitoring the Execution of Third-party Software on Mobile Devices (Extended Abstract). In 11th International Symposium On Recent Advances In Intrusion Detection (RAID'08), Springer. 2008.
- [ICICS08] Liqun Chen and Mark Dermot Ryan and Guilin Wang. Information and Communications Security. 2008.
- [ZhangGuelevRyan2008] Nan Zhang, Dimitar P. Guelev and Mark Ryan. Synthesising Verified Access Control Systems through Model Checking. Journal of Computer Security, 16(1), pages 1-61. 2007.
- [ZhangRyanGuelev2005] Nan Zhang, Mark Ryan and Dimitar Guelev. Evaluating Access Control Policies Through Model Checking. In Eighth Information Security Conference (ISC'05). Lecture Notes in Computer Science volume 3650:446-460. 2005.
- [ZhangRyanGuelev2004] Nan Zhang, Mark Ryan and Dimitar P. Guelev. Synthesising Verified Access Control Systems in XACML. In 2nd ACM Workshop on Formal Methods in Security Engineering, pages 56-65, Springer. 2004.
- [GuelevRyanSchobbens2004AccessControl] Dimitar P. Guelev, Mark Ryan and Pierre-Yves Schobbens. Model-checking Access Control Policies. In Seventh Information Security Conference (ISC'04), Springer. Lecture notes in Computer Science. 2004.