Title :
A unified class model for checking security policies in ICT infrastructures
Author :
Bertolotti, Ivan Cibrario ; Durante, Luca ; Tingting Hu ; Valenzano, Adriano
Author_Institution :
IEIIT, Turin, Italy
Abstract :
Automatic conformance checks of security policies is becoming a key issue in large ICT infrastructures that are more and more prone to cyber-attacks, in particular when wireless communication technologies and media are extensively adopted. This paper presents a hierarchical class-based model for the description of a system and its security requirements, that can be profitably used by a computer-aided analysis tool designed to carry out several kinds of policy verification. Our experience, gained in analyzing real systems, confirms that the structure and flexibility of the system description model are critical issues, together with the collection of real data needed to populate the model itself. The proposed solution is able to tolerate and overcome many of the practical limitations that are met when dealing with large and heterogeneous scenarios.
Keywords :
computer crime; conformance testing; formal verification; radio networks; telecommunication security; ICT infrastructures; automatic conformance checks; checking security policies; computer-aided analysis tool design; cyber-attacks; heterogeneous scenarios; hierarchical class-based model; policy verification; real systems analysis; security policies; security requirements; system description model; unified class model; wireless communication technologies; Abstracts; Computational modeling; Data models; Marine vehicles; Object oriented modeling; Security; Servers;
Conference_Titel :
Satellite Telecommunications (ESTEL), 2012 IEEE First AESS European Conference on
Conference_Location :
Rome
Print_ISBN :
978-1-4673-4687-0
Electronic_ISBN :
978-1-4673-4686-3
DOI :
10.1109/ESTEL.2012.6400068
