Using Spatio-Temporal Role Based Access Control for Physical Access Control Specification: Towards Effective Cyber-Physical Systems

Spatio-Temporal Role-based access control (STRBAC) has been acknowledged as an effective mechanism for specifying access control policies for cyber systems. However, it is not yet clear how a STRBAC model can be used for specifying access control policies for physical systems. In this paper, we propose a Spatio-Temporal Role Based Access Control (STRBAC) system for modeling the physical access control specification. However, any comprehensive access control model such as STRBAC requires verification mechanisms to ensure the consistency of access control specification. As a result, this paper makes the use of Alloy to perform the analysis of the STRBAC specification. To achieve this, the paper make the use of AC2Alloy to automate the transformation between STRBAC specification and Alloy. With the help of an example, this paper shows how the STRBAC model is transformed into Alloy using our AC2Alloy, and then the produced Alloy model will be analyzed using Alloy Analyzer to detect inconsistencies in the STRBAC specification.. Index Terms — spatio-temporal role based access control, alloy, ac2alloy, physical system.