DocumentCode :
2541852
Title :
Security policy validation using temporal executable specifications
Author :
Krichene, Jihene ; Hamdi, Mohamed ; Boudriga, Noureddine
Author_Institution :
Univ. of 7th November at Carthage, Tunis
fYear :
2007
fDate :
7-10 Oct. 2007
Firstpage :
2848
Lastpage :
2853
Abstract :
Security policies constitute the core of protecting information systems. Validation tools should therefore be developed to check whether a version of a specific security policy conforms to the required security properties. This paper proposes a validation framework for security policies where: (1) algebraic specifications are used to build abstract views about the security policy, (2) an executable security policy can be extracted from the algebraic representation, and (3) syntactical (resp. sematic) verification of the executable (resp. algebraic) security policy is performed.
Keywords :
program verification; security of data; algebraic representation; algebraic specifications; executable security policy; information systems; security policy validation; syntactical verification; temporal executable specifications; Communication system security; Humans; ISO standards; Information security; Information systems; Protection; Software engineering; Software maintenance; Software systems; Stress;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Systems, Man and Cybernetics, 2007. ISIC. IEEE International Conference on
Conference_Location :
Montreal, Que.
Print_ISBN :
978-1-4244-0990-7
Electronic_ISBN :
978-1-4244-0991-4
Type :
conf
DOI :
10.1109/ICSMC.2007.4413742
Filename :
4413742
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=2541852
بازگشت