Sciweavers

DANCE
2002
IEEE

Developing Dynamic Security Policies

14 years 5 months ago
Developing Dynamic Security Policies
In this paper we define and provide a general construction for a class of policies we call dynamic policies. In most existing systems, policies are implemented and enforced by changing the operational parameters of shared system objects. These policies do not account for the behavior of the entire system, and enforcing these policies can have unexpected interactive or concurrent behavior. We present a policy specification, implementation, and enforcement methodology based on formal models of interactive behavior and satisfiability of system properties. We show that changing the operational parameters of our policy implementation entities does not affect the behavioral guarantees specified by the properties. We demonstrate the construction of dynamic access control policies based on safety property specifications and describe an implementation of these policies in the Seraphim active network architecture. We present examples of reactive security systems that demonstrate the power ...
Prasad Naldurg, Roy H. Campbell, M. Dennis Mickuna
Added 14 Jul 2010
Updated 14 Jul 2010
Type Conference
Year 2002
Where DANCE
Authors Prasad Naldurg, Roy H. Campbell, M. Dennis Mickunas
Comments (0)