Analysis of integrity policies using soft constraints

Analysis of integrity policies using soft constraints

An integrity policy defines the situations when modification of information is authorized and is enforced by the security mechanisms of the system. However, in a complex application system it is possible that an integrity policy may have been incorrectly specified and, as a result, a user may be aut...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Bistarelli, S., Foley, S.N.
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Application software
Computer crime
Computer science
Computer security
Counting circuits
Formal specifications
Hardware
Information security
Protection
Software systems
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:An integrity policy defines the situations when modification of information is authorized and is enforced by the security mechanisms of the system. However, in a complex application system it is possible that an integrity policy may have been incorrectly specified and, as a result, a user may be authorized to modify information that can lead to an unexpected system compromise. We outline a scalable and quantitative technique that uses constraint solving to model and analyze the effectiveness of application system integrity policies.
DOI:10.1109/POLICY.2003.1206959