Modeling runtime enforcement with mandatory results automata

被引:35
|
作者
Dolzhenko, Egor [1 ,2 ]
Ligatti, Jay [1 ]
Reddy, Srikar [1 ]
机构
[1] Univ S Florida, Dept Comp Sci & Engn, Tampa, FL 33620 USA
[2] Univ S Florida, Dept Math & Stat, Tampa, FL USA
来源
INTERNATIONAL JOURNAL OF INFORMATION SECURITY | 2015年 / 14卷 / 01期
基金
美国国家科学基金会;
关键词
Enforceability theory; Monitoring; Runtime enforcement; Security automata; Models of enforcement;
D O I
10.1007/s10207-014-0239-8
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This paper presents a theory of runtime enforcement based on mechanism models called mandatory results automata (MRAs). MRAs can monitor and transform security-relevant actions and their results. The operational semantics of MRAs is simple and enables straightforward definitions of concrete MRAs. Moreover, the definitions of policies and enforcement with MRAs are simple and expressive. Putting all of these features together, we argue that MRAs make good general models of runtime mechanisms, upon which a theory of runtime enforcement can be based. We develop some enforceability theory by characterizing the policies deterministic and non-deterministic MRAs can and cannot enforce.
引用
收藏
页码:47 / 60
页数:14
相关论文
共 50 条
  • [1] Modeling runtime enforcement with mandatory results automata
    Egor Dolzhenko
    Jay Ligatti
    Srikar Reddy
    International Journal of Information Security, 2015, 14 : 47 - 60
  • [2] A Theory of Runtime Enforcement, with Results
    Ligatti, Jay
    Reddy, Srikar
    COMPUTER SECURITY-ESORICS 2010, 2010, 6345 : 87 - 100
  • [3] Critical Infrastructures Security Modeling, Enforcement and Runtime Checking
    El Kalam, Anas Abou
    Deswarte, Yves
    CRITICAL INFORMATION INFRASTRUCTURES SECURITY, 2009, 5508 : 95 - +
  • [4] On Bidirectional Runtime Enforcement
    Aceto, Luca
    Cassar, Ian
    Francalanza, Adrian
    Ingolfsdottir, Anna
    FORMAL TECHNIQUES FOR DISTRIBUTED OBJECTS, COMPONENTS, AND SYSTEMS, FORTE 2021, 2021, 12719 : 3 - 21
  • [5] Predictive runtime enforcement
    Pinisetty, Srinivas
    Preoteasa, Viorel
    Tripakis, Stavros
    Jeron, Thierry
    Falcone, Ylies
    Marchand, Herve
    FORMAL METHODS IN SYSTEM DESIGN, 2017, 51 (01) : 154 - 199
  • [6] Compositional Runtime Enforcement
    Pinisetty, Srinivas
    Tripakis, Stavros
    NASA FORMAL METHODS, NFM 2016, 2016, 9690 : 82 - 99
  • [7] Runtime Enforcement of Hyperproperties
    Coenen, Norine
    Finkbeiner, Bernd
    Hahn, Christopher
    Hofmann, Jana
    Schillo, Yannick
    AUTOMATED TECHNOLOGY FOR VERIFICATION AND ANALYSIS, ATVA 2021, 2021, 12971 : 283 - 299
  • [8] Predictive runtime enforcement
    Srinivas Pinisetty
    Viorel Preoteasa
    Stavros Tripakis
    Thierry Jéron
    Yliès Falcone
    Hervé Marchand
    Formal Methods in System Design, 2017, 51 : 154 - 199
  • [9] On the Runtime Enforcement of Timed Properties
    Falcone, Ylies
    Pinisetty, Srinivas
    RUNTIME VERIFICATION, RV 2019, 2019, 11757 : 48 - 69
  • [10] Compositional runtime enforcement revisited
    Pinisetty, Srinivas
    Pradhan, Ankit
    Roop, Partha
    Tripakis, Stavros
    FORMAL METHODS IN SYSTEM DESIGN, 2021, 59 (1-3) : 205 - 252
12345