Skip to Main content Skip to Navigation
Journal articles

Synthesizing Enforcement Monitors wrt. the Safety-Progress Classification of Properties

Abstract : Runtime enforcement is a powerful technique to ensure that a program will respect a given security policy. We extend previous works on this topic in several directions. Firstly, we propose a generic notion of enforcement monitors based on a memory device and finite sets of control states and enforcement operations. Moreover, we specify their enforcement abilities w.r.t. the general safety-progress classification of properties. It allows a fine-grain characterization of the space of enforceable properties. Finally, we propose a systematic technique to produce an enforcement monitor from the Streett automaton recognizing a given safety, guarantee, obligation or response security property.
Complete list of metadata

Cited literature [14 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-00346063
Contributor : Yliès Falcone <>
Submitted on : Thursday, December 11, 2008 - 8:56:16 AM
Last modification on : Thursday, November 19, 2020 - 3:58:01 PM
Long-term archiving on: : Thursday, October 11, 2012 - 1:20:25 PM

File

main.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-00346063, version 1

Collections

IMAG | LIG | CNRS | VERIMAG | UGA

Citation

Yliès Falcone, Jean-Claude Fernandez, Laurent Mounier. Synthesizing Enforcement Monitors wrt. the Safety-Progress Classification of Properties. ICISS'08: International Conference on Information Systems Security, 2008, pp.41-55. ⟨hal-00346063⟩

Share