Modeling runtime enforcement with mandatory results automata

被引:35
作者
Dolzhenko, Egor [1 ,2 ]
Ligatti, Jay [1 ]
Reddy, Srikar [1 ]
机构
[1] Univ S Florida, Dept Comp Sci & Engn, Tampa, FL 33620 USA
[2] Univ S Florida, Dept Math & Stat, Tampa, FL USA
来源
INTERNATIONAL JOURNAL OF INFORMATION SECURITY | 2015年 / 14卷 / 01期
基金
美国国家科学基金会;
关键词
Enforceability theory; Monitoring; Runtime enforcement; Security automata; Models of enforcement;
D O I
10.1007/s10207-014-0239-8
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This paper presents a theory of runtime enforcement based on mechanism models called mandatory results automata (MRAs). MRAs can monitor and transform security-relevant actions and their results. The operational semantics of MRAs is simple and enables straightforward definitions of concrete MRAs. Moreover, the definitions of policies and enforcement with MRAs are simple and expressive. Putting all of these features together, we argue that MRAs make good general models of runtime mechanisms, upon which a theory of runtime enforcement can be based. We develop some enforceability theory by characterizing the policies deterministic and non-deterministic MRAs can and cannot enforce.
引用
收藏
页码:47 / 60
页数:14
相关论文
共 47 条
  • [1] Modeling runtime enforcement with mandatory results automata
    Egor Dolzhenko
    Jay Ligatti
    Srikar Reddy
    International Journal of Information Security, 2015, 14 : 47 - 60
  • [2] A Theory of Runtime Enforcement, with Results
    Ligatti, Jay
    Reddy, Srikar
    COMPUTER SECURITY-ESORICS 2010, 2010, 6345 : 87 - 100
  • [3] Predictive runtime enforcement
    Pinisetty, Srinivas
    Preoteasa, Viorel
    Tripakis, Stavros
    Jeron, Thierry
    Falcone, Ylies
    Marchand, Herve
    FORMAL METHODS IN SYSTEM DESIGN, 2017, 51 (01) : 154 - 199
  • [4] Predictive runtime enforcement
    Srinivas Pinisetty
    Viorel Preoteasa
    Stavros Tripakis
    Thierry Jéron
    Yliès Falcone
    Hervé Marchand
    Formal Methods in System Design, 2017, 51 : 154 - 199
  • [5] Compositional runtime enforcement revisited
    Srinivas Pinisetty
    Ankit Pradhan
    Partha Roop
    Stavros Tripakis
    Formal Methods in System Design, 2021, 59 : 205 - 252
  • [6] Compositional runtime enforcement revisited
    Pinisetty, Srinivas
    Pradhan, Ankit
    Roop, Partha
    Tripakis, Stavros
    FORMAL METHODS IN SYSTEM DESIGN, 2021, 59 (1-3) : 205 - 252
  • [7] Runtime enforcement monitors: composition, synthesis, and enforcement abilities
    Yliès Falcone
    Laurent Mounier
    Jean-Claude Fernandez
    Jean-Luc Richier
    Formal Methods in System Design, 2011, 38 : 223 - 262
  • [8] Runtime enforcement monitors: composition, synthesis, and enforcement abilities
    Falcone, Ylies
    Mounier, Laurent
    Fernandez, Jean-Claude
    Richier, Jean-Luc
    FORMAL METHODS IN SYSTEM DESIGN, 2011, 38 (03) : 223 - 262
  • [9] The enforcement of mandatory disclosure rules
    Dahm, Matthias
    Gonzalez, Paula
    Porteiro, Nicolas
    JOURNAL OF PUBLIC ECONOMICS, 2018, 167 : 21 - 32
  • [10] Runtime enforcement of timed properties revisited
    Pinisetty, Srinivas
    Falcone, Ylies
    Jeron, Thierry
    Marchand, Herve
    Rollet, Antoine
    Timo, Omer Nguena
    FORMAL METHODS IN SYSTEM DESIGN, 2014, 45 (03) : 381 - 422
12345