EON: Modeling and Analyzing Dynamic Access Control Systems with Logic Programs

Avik Chaudhuri, Prasad Naldurg, Sriram Rajamani, Ganesan Ramalingam, and Lakshmisubrahmanyam Velaga

We present EON, a logic-programming language and tool that can be used to model and analyze dynamic access control systems. Our language extends Datalog with some carefully designed constructs that allow the introduction and transformation of new relations. For example, these constructs can model the creation of processes and objects, and the modification of their security labels at runtime. The information-flow properties of such systems can be analyzed by asking queries in this language. We show that query evaluation in EON can be reduced to decidable query satisfiability in a fragment of Datalog, and further, under some restrictions, to efficient query evaluation in Datalog. We implement these reductions in our tool, and demonstrate its scope through several case studies. In particular, we study in detail the dynamic access control models of the Windows Vista and Asbestos operating systems. We also automatically prove the security of a webserver running on Asbestos.


    author = {Avik Chaudhuri and Prasad Naldurg and Sriram Rajamani and Ganesan Ramalingam and
              Lakshmisubrahmanyam Velaga},
    title = {EON: Modeling and analyzing dynamic access control systems},
    booktitle = {Proceedings of the 15th ACM Conference on
                 Computer and Communications Security (CCS'08)},
    year = {2008},
    pages = {381--390},
    publisher = {ACM}

  Download F#
  Download Perl (required only for some advanced features)

  EON Microsoft Research India]

  Model of a webserver running on Asbestos (derived from this extended EON/Perl script)