Automatic security policy enforcement in computer systems
作者: Kamel Adi , Lamia Hamza , Liviu Pene
DOI: 10.1016/J.COSE.2017.10.012
关键词:
摘要: Abstract This paper proposes a formal framework for automatic security policy enforcement in computer systems. In this approach, systems and their interactions are formally modeled as process algebra expressions with new dedicated calculus inspired from the ambient calculus. Security policies specified aid of modal logic. We demonstrate how, given expressed by logical formula, our allows to verify whether specification meets requirements. If it does not, optimal system is automatically generated using operator. A software prototype has been implemented show practical feasibility effectiveness framework.
sci-hub.se 参考文章(22)
David Steinberg, Ed Merks, Marcelo Paternostro, Frank Budinsky, EMF: Eclipse Modeling Framework 2.0 Addison-Wesley Professional. ,(2009)
Kevin Hamlen, Greg Morrisett, Security policy enforcement by automated program-rewriting Cornell University. ,(2006)
Liviu Pene, Kamel Adi, A Calculus for Distributed Firewall Specification and Verification new trends in software methodologies, tools and techniques. pp. 301- 315 ,(2006)
Jay Ligatti, Lujo Bauer, David Walker, A Language and System for Composing Security Policies ,(2004)
Joost-Pieter Katoen, Christel Baier, Principles of Model Checking ,(2008)
Bill Joy, Guy Steele, James Gosling, Gilad Bracha, None, The Java Language Specification ,(1996)
Mahjoub Langar, Mohamed Mejri, Kamel Adi, Formal enforcement of security policies on concurrent systems Journal of Symbolic Computation. ,vol. 46, pp. 997- 1016 ,(2011) , 10.1016/J.JSC.2011.05.003
David Basin, Vincent Jugé, Felix Klaedtke, Eugen Zălinescu, Enforceable Security Policies Revisited ACM Transactions on Information and System Security. ,vol. 16, pp. 3- ,(2013) , 10.1145/2487222.2487225
G. Ferrari, E. Moggi, R. Pugliese, Guardians for Ambient-Based Monitoring Electronic Notes in Theoretical Computer Science. ,vol. 66, pp. 52- 75 ,(2002) , 10.1016/S1571-0661(04)80416-X
George C. Necula, Proof-carrying code symposium on principles of programming languages. pp. 106- 119 ,(1997) , 10.1145/263699.263712