Rewriting-based security enforcement of concurrent systems: A formal approach

Rewriting-based security enforcement of concurrent systems: A formal approach

Program security enforcement is designed to ensure that a program respects a given security policy, which generally specifies the acceptable executions of that. In general, the enforcement is achieved by adding some controls (tests) inside the target program or process. The major drawback of existin...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Langar, Mahjoub, Mejri, Mohamed, Adi, Kamel
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Algebra
Concurrent systems
Formal verification
Language based security
Monitoring
Process algebra
Runtime
Runtime verification
Safety
Security
Semantics
Syntactics
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Program security enforcement is designed to ensure that a program respects a given security policy, which generally specifies the acceptable executions of that. In general, the enforcement is achieved by adding some controls (tests) inside the target program or process. The major drawback of existing techniques is either their lack of precision or their inefficiency, especially those dedicated for concurrent languages. This paper proposes an efficient algebraic and fully automatic approach for security program enforcement: given a concurrent program P and a security policy φ, it automatically generates another program P' that satisfies φ and behaves like P, except that it stops when P tries to violate the security policy φ.