Do you really mean what you actually enforced? Edit Automata revisited

Bielova, Nataliia and Massacci, Fabio (2008) Do you really mean what you actually enforced? Edit Automata revisited. UNSPECIFIED.

[img]
Preview
PDF
Download (1348Kb) | Preview

    Abstract

    In the landmark paper on the theoretical side of Polymer, Ligatti and his co-authors have identied a new class of enforcement mechanisms based on the notion of edit automata, that can transform sequences and enforce more than simple safety properties. We show that there is a gap between the edit automata that one can possibly write (e.g. by Ligatti et al in their running example) and the edit automata that are actually constructed according the theorems from Ligatti's IJIS paper and IC follow-up paper by Talhi et al. "Ligatti's automata" are just a particular kind of edit automata. Thus, we re-open a question which seemed to have received a denitive answer: you have written your security enforcement mechanism (aka your edit automata); does it really enforce the security policy you wanted?

    Item Type: Departmental Technical Report
    Department or Research center: Information Engineering and Computer Science
    Subjects: Q Science > QA Mathematics > QA076 Computer software
    Uncontrolled Keywords: Formal models for security, trust and reputation, Resource and Access Control, Validation/Analysis tools and techniques
    Report Number: DISI-08-060
    Repository staff approval on: 26 Nov 2008

    Actions (login required)

    View Item