Toggle Main Menu Toggle Search

Open Access padlockePrints

Quantitative evaluation of enforcement strategies position paper

Lookup NU author(s): Dr Charles Morisset

Downloads

Full text for this publication is not currently held within this repository. Alternative links are provided below where available.


Abstract

A security enforcement mechanism runs in parallel with a system to check and modify its run-time behaviour, so that it satisfies some security policy. For each policy, several enforcement strategies are possible, usually reflecting trade-offs one has to make to satisfy the policy. To evaluate them, multiple dimensions, such as security, cost of implementation, or cost of attack, must be taken into account. We propose a formal framework for the quantification of enforcement strategies, extending the notion of controller processes (mimicking the well-known edit automata) with weights on transitions, valued in a semiring. © 2014 Springer International Publishing Switzerland.


Publication metadata

Author(s): Ciancia V, Martinelli F, Ilaria M, Morisset C

Publication type: Conference Proceedings (inc. Abstract)

Publication status: Published

Conference Name: 6th International Symposium on Foundations and Practice of Security (FPS 2013)

Year of Conference: 2014

Pages: 178-186

Online publication date: 21/03/2014

Acceptance date: 01/01/1900

ISSN: 0302-9743

Publisher: Springer

URL: https://doi.org/10.1007/978-3-319-05302-8_11

DOI: 10.1007/978-3-319-05302-8_11

Library holdings: Search Newcastle University Library for this item

Series Title: Lecture Notes in Computer Science

ISBN: 9783319053011


Actions

Find at Newcastle University icon    Link to this publication


Share