SpringerLink - Book Chapter

Do You Really Mean What You Actually Enforced?

Edit Automata Revisited

Book Series

Lecture Notes in Computer Science

Publisher

Springer Berlin / Heidelberg

ISSN

0302-9743 (Print) 1611-3349 (Online)

Volume

Volume 5491/2009

Book

Formal Aspects in Security and Trust

DOI

10.1007/978-3-642-01465-9

2009

ISBN

978-3-642-01464-2

DOI

10.1007/978-3-642-01465-9_19

Pages

287-301

Subject Collection

Computer Science

SpringerLink Date

Sunday, April 05, 2009

Do You Really Mean What You Actually Enforced?

Edit Automata Revisited

Nataliia Bielova¹⁹ and Fabio Massacci¹⁹

(19)	DISI, University of Trento, Italy

Abstract

In the landmark paper on the theoretical side of Polymer, Ligatti and his co-authors have identified a new class of enforcement mechanisms based on the notion of edit automata, that can transform sequences and enforce more than simple safety properties.

We show that there is a gap between the edit automata that one can possibly write (e.g. by Ligatti himself in his running example) and the edit automata that are actually constructed according the theorems from Ligatii’s IJIS paper and IC follow-up papers by Talhi et al. ”Ligatti’s automata” are just a particular kind of edit automata.

Thus, we re-open a question which seemed to have received a definitive answer: you have written your security enforcement mechanism (aka your edit automata); does it really enforce the security policy you wanted?

Keywords Formal models for security - trust and reputation - Resource and Access Control - Validation/Analysis tools and techniques

Research partly supported by the Project EU-FP7-IP-MASTER.

Nataliia Bielova
Email: Bielova@disi.unitn.it

Fabio Massacci
Email: Massacci@disi.unitn.it

Do You Really Mean What You Actually Enforced?

Fulltext Preview (Small, Large)