LOGICAL-LANGUAGE TOOLS FOR DESCRIBING THE ACCESS CONTROL MODEL IN INFORMATION SYSTEMS

The existing logical and linguistic descriptions of access control systems (DACS) are considered, their positive and negative sides are considered. A new method of describing the DACS using the JSON language is proposed for the most accurate analysis of the load on administrators (operators) of information security of information systems, as well as the time required to conduct access control operations in information systems.

1. Андреев О. О. О методах оптимизации механизмов разграничения доступа,

2. основанных на логико-языковых средствах. Проблемы информатики. – 2009. – № 1 (2). – С. 24-33. Доступно по: // http://www.oasis-open.org/.

3. Lorch M. First experiences using XACML for access control in distributed systems / M. Lorch, S. Proctor, R. Lepro et al. // Proc. of the ACM workshop on XML security, 31 Oct., 2003.

4. Fisler K. Policy verification and change impact analysis / K. Fisler, S. Krishnamurthi, L. Meyerovich, M. Carl // Proc. of the workshop Ottawa "New challenges for access control", Ottawa (Canada), 27 Apr. 2005 // Available at: http://sec.cs.kent.ac.uk/permis/.

5. Martin E. Automated test generation for access control policies via change-impact analysis / E. Martin, T. Xie // Proc. of the 3rd Intern. workshop on software engineering for secure systems (SESS 2007), May 2007.

6. Моделирование и верификация политик безопасности управления доступом в операционных система / П. Н. Девянин. – М: Горячая линия – Телеком, 2019. – 214 с.

7. Internet Engineering Task Force (IETF). Request for Comments: 7159. The JavaScript Object Notation (JSON) Data Interchange Format. // https://www.rfc-editor.org/rfc/rfc7159.txt // 26.11.2022 г.