loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Author: Peter Amthor

Affiliation: Ilmenau University of Technology, Germany

Keyword(s): Security Engineering, Security Policies, Access Control Models, Operating System Security, SELinux.

Related Ontology Subjects/Areas/Topics: Access Control ; Data Engineering ; Databases and Data Security ; Formal Methods for Security ; Information and Systems Security ; Internet Technology ; Security and Privacy Policies ; Security Engineering ; Security in Information Systems ; Web Information Systems and Technologies

Abstract: Modern operating systems increasingly rely on enforcing mandatory access control through the use of security policies. Given the critical property of policy correctness in such systems, formal methods and models are applied for both specification and verification of these policies. Due to the heterogeneity of their respective semantics, this is an intricate and error-prone engineering process. However, diverse access control systems on the one hand and diverse formal criteria of correctness on the other hand have so far impeded a unifying framework for this task. This paper presents a step towards this goal. We propose to leverage core-based model engineering, a uniform approach to security policy formalization, and refine it by adding typical semantic abstractions of contemporary policy-controlled operating systems. This results in a simple, yet highly flexible framework for formalization, specification and analysis of operating system security policies. We substantiate this claim b y applying our method to the SELinux system and practically demonstrate how to map policy semantics to an instance of the model. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.129.69.151

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Amthor, P. (2015). A Uniform Modeling Pattern for Operating Systems Access Control Policies with an Application to SELinux. In Proceedings of the 12th International Conference on Security and Cryptography (ICETE 2015) - SECRYPT; ISBN 978-989-758-117-5; ISSN 2184-3236, SciTePress, pages 88-99. DOI: 10.5220/0005551000880099

@conference{secrypt15,
author={Peter Amthor.},
title={A Uniform Modeling Pattern for Operating Systems Access Control Policies with an Application to SELinux},
booktitle={Proceedings of the 12th International Conference on Security and Cryptography (ICETE 2015) - SECRYPT},
year={2015},
pages={88-99},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0005551000880099},
isbn={978-989-758-117-5},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the 12th International Conference on Security and Cryptography (ICETE 2015) - SECRYPT
TI - A Uniform Modeling Pattern for Operating Systems Access Control Policies with an Application to SELinux
SN - 978-989-758-117-5
IS - 2184-3236
AU - Amthor, P.
PY - 2015
SP - 88
EP - 99
DO - 10.5220/0005551000880099
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic