A unified class model for checking security policies in ICT infrastructures

Author

Bertolotti, Ivan Cibrario ; Durante, Luca ; Tingting Hu ; Valenzano, Adriano

Author_Institution

IEIIT, Turin, Italy

fYear

2012

fDate

2-5 Oct. 2012

Firstpage

1

Lastpage

6

Abstract

Automatic conformance checks of security policies is becoming a key issue in large ICT infrastructures that are more and more prone to cyber-attacks, in particular when wireless communication technologies and media are extensively adopted. This paper presents a hierarchical class-based model for the description of a system and its security requirements, that can be profitably used by a computer-aided analysis tool designed to carry out several kinds of policy verification. Our experience, gained in analyzing real systems, confirms that the structure and flexibility of the system description model are critical issues, together with the collection of real data needed to populate the model itself. The proposed solution is able to tolerate and overcome many of the practical limitations that are met when dealing with large and heterogeneous scenarios.

Keywords

computer crime; conformance testing; formal verification; radio networks; telecommunication security; ICT infrastructures; automatic conformance checks; checking security policies; computer-aided analysis tool design; cyber-attacks; heterogeneous scenarios; hierarchical class-based model; policy verification; real systems analysis; security policies; security requirements; system description model; unified class model; wireless communication technologies; Abstracts; Computational modeling; Data models; Marine vehicles; Object oriented modeling; Security; Servers;

fLanguage

English

Publisher

ieee

Conference_Titel

Satellite Telecommunications (ESTEL), 2012 IEEE First AESS European Conference on

Conference_Location

Rome

Print_ISBN

978-1-4673-4687-0

Electronic_ISBN

978-1-4673-4686-3

Type

conf

DOI

10.1109/ESTEL.2012.6400068

Filename

6400068