Efficient Heuristic Safety Analysis of Core-based Security Policies

Peter Amthor

2017

Abstract

Being of paramount importance for the correctness of a security policy, the property of safety has received decades of attention in the field of model-based security engineering. To analyze the safety of a security model, heuristic approaches are used to avoid restrictions of the model calculus while accepting semi-decidability of this property. Within this field, this paper addresses three open problems concerning the DEPSEARCH heuristic safety analysis framework: Inefficient state-space exploration, static verification of unsafety-unsatisfiability, and parameter dependency analysis. We describe these problems on a formal basis, specify solution proposals, and implement these in the current, model-independent fDS framework. A practical evaluation based on SELinux is performed to study effectiveness and future optimization of the framework.

Download


Paper Citation


in Harvard Style

Amthor P. (2017). Efficient Heuristic Safety Analysis of Core-based Security Policies . In Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017) ISBN 978-989-758-259-2, pages 384-392. DOI: 10.5220/0006477103840392


in Bibtex Style

@conference{secrypt17,
author={Peter Amthor},
title={Efficient Heuristic Safety Analysis of Core-based Security Policies},
booktitle={Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017)},
year={2017},
pages={384-392},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006477103840392},
isbn={978-989-758-259-2},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 14th International Joint Conference on e-Business and Telecommunications - Volume 6: SECRYPT, (ICETE 2017)
TI - Efficient Heuristic Safety Analysis of Core-based Security Policies
SN - 978-989-758-259-2
AU - Amthor P.
PY - 2017
SP - 384
EP - 392
DO - 10.5220/0006477103840392