PUMA
Istituto di Scienza e Tecnologie dell'Informazione     
Ciancia V., Martinelli F., Matteucci I., Morisset C. Quantitative evaluation of enforcement strategies. Jean Luc Danger, Mourad Debbabi, Jean-Yves Marion, Joaquin Garcia-Alfaro, Nur Zincir Heywood (eds.). (Lecture Notes in Computer Science, vol. 2014). Heidelberg: Springer, 2014.
 
 
Abstract
(English)
A security enforcement mechanism runs in parallel with a system to check and modify its run-time behaviour, so that it satisfies some security policy. For each policy, several enforcement strategies are possible, usually reflecting trade-offs one has to make to satisfy the policy. To evaluate them, multiple dimensions, such as security, cost of implementation, or cost of attack, must be taken into account. We propose a formal framework for the quantification of enforcement strategies, extending the notion of controller processes (mimicking the well-known edit automata) with weights on transitions, valued in a semiring.
URL: http://link.springer.com/chapter/10.1007/978-3-319-05302-8_11
DOI: 10.1007/978-3-319-05302-8_11
Subject Enforcement mechanisms
Quantitative process algebra
Semiring
D.4.6 Security and Protection


Icona documento 1) Download Document PDF


Icona documento Open access Icona documento Restricted Icona documento Private

 


Per ulteriori informazioni, contattare: Librarian http://puma.isti.cnr.it

Valid HTML 4.0 Transitional