• Documents
  • Authors
  • Tables
  • Other Seers ▼
    RefSeer AckSeer CollabSeer SeerSeer
  • Log in
  • Sign up
  • MetaCart

CiteSeerX logo

Advanced Search Include Citations
Advanced Search Include Citations | Disambiguate

More Enforceable Security Policies (2002)

Cached

  • Download as a PDF

Download Links

  • [www.ece.cmu.edu]
  • [www.cs.princeton.edu]
  • [www.cs.princeton.edu:80]
  • [www.cs.princeton.edu]
  • [www.cs.princeton.edu]
  • [www.ece.cmu.edu]
  • [www.cs.princeton.edu]
  • [www.cs.princeton.edu]
  • [www.cs.princeton.edu:80]
  • [www.cs.princeton.edu]
  • [www.cs.princeton.edu]

  • Save to List
  • Add to Collection
  • Correct Errors
  • Monitor Changes
by Lujo Bauer , Jarred Ligatti , David Walker
Venue:IN FOUNDATIONS OF COMPUTER SECURITY
Citations:39 - 6 self
  • Summary
  • Active Bibliography
  • Co-citation
  • Clustered Documents
  • Version History

BibTeX

@INPROCEEDINGS{Bauer02moreenforceable,
    author = {Lujo Bauer and Jarred Ligatti and David Walker},
    title = {More Enforceable Security Policies},
    booktitle = {IN FOUNDATIONS OF COMPUTER SECURITY},
    year = {2002},
    publisher = {}
}

Years of Citing Articles

Bookmark

citeulike Connotea Bibsonomy Del.icio.us Digg Reddit

OpenURL

 

Abstract

We analyze the space of security policies that can be enforced by monitoring programs at runtime. Our program monitors are automata that examine the sequence of program actions and transform the sequence when it deviates from the specified policy. The simplest such automaton truncates the action sequence by terminating a program. Such automata are commonly known as security automata, and they enforce Schneider's EM class of security policies. We define automata with more powerful transformational abilities, including the ability to insert a sequence of actions into the event stream and to suppress actions in the event stream without terminating the program. We give a set-theoretic characterization of the policies these new automata are able to enforce and show that they are a superset of the EM policies.

Citations

773 Algorithms on Strings, Trees and Sequences - Gusfield - 1997
553 Fundamentals of Database Systems - Elmasri, Navathe - 1989
388 Enforceable security policies - Schneider - 2000
179 1999], SASI enforcement of security policies: a retrospective - Erlingsson, Schneider
145 Recognizing safety and liveness - Alpern, Schneider - 1987
132 Flexible policy-directed code safety - Evans, Twyman - 1999
119 IRM enforcement of Java stack inspection - Erlingsson, Schneider - 2000
83 A type system for expressive security policies - Walker - 2000
71 Enforcing trace properties by program transformation - Colcombet, Fradet - 2000
38 Formally specified monitoring of temporal properties - Kim, Viswanathan, et al. - 1999
18 Distributed safety controllers for Web services - Sandholm, Schwartzbach - 1998
11 Logical foundation - Lamport - 1985
2 Enforcing security properties by type specialization - Thiemann - 2001
The National Science Foundation
  • About CiteSeerX
  • Submit Documents
  • Privacy Policy
  • Help
  • Data
  • Source
  • Contact Us

Developed at and hosted by The College of Information Sciences and Technology

© 2007-2010 The Pennsylvania State University