Lookup NU author(s): Dr Charles Morisset
Full text for this publication is not currently held within this repository. Alternative links are provided below where available.
A security enforcement mechanism runs in parallel with a system to check and modify its run-time behaviour, so that it satisfies some security policy. For each policy, several enforcement strategies are possible, usually reflecting trade-offs one has to make to satisfy the policy. To evaluate them, multiple dimensions, such as security, cost of implementation, or cost of attack, must be taken into account. We propose a formal framework for the quantification of enforcement strategies, extending the notion of controller processes (mimicking the well-known edit automata) with weights on transitions, valued in a semiring. © 2014 Springer International Publishing Switzerland.
Author(s): Ciancia V, Martinelli F, Ilaria M, Morisset C
Publication type: Conference Proceedings (inc. Abstract)
Publication status: Published
Conference Name: 6th International Symposium on Foundations and Practice of Security (FPS 2013)
Year of Conference: 2014
Online publication date: 21/03/2014
Acceptance date: 01/01/1900
Library holdings: Search Newcastle University Library for this item
Series Title: Lecture Notes in Computer Science