The Community for Technology Leaders
RSS Icon
Subscribe
Vienna, Austria
Apr. 10, 2007 to Apr. 13, 2007
ISBN: 0-7695-2775-2
pp: 1160-1166
Hyung Chan Kim , Gwangju Institute of Science and Technology, Korea
R.S. Ramakrishna , Gwangju Institute of Science and Technology, Korea
Wook Shin , University of Illinois at Urbana-Champaign
Kouichi Sakurai , Kyushu University, Fukuoka 812-8581, Japan
ABSTRACT
The main focus of current research in Trusted Operating Systems (TOS) is on the enhanced access control of reference monitors which, in turn, control the individual operations on a given access instance. However, many real-life runtime attacks involve behavioral semantics. We have proposed an extended reference monitor to support both access and behavior controls. This results in a sequence of operations which are also of concern in security enforcement. This paper presents a policy language for the extended reference monitor. Our policy language is based on Domain and Type Enforcement (DTE) and Role-Based Access Control (RBAC). Permission is defined as an event and a state of behavior is represented as a fluent to be accorded with the convention of Event Calculus (EC). Behavior policies can be expressed with the EC style syntax as well as access control policies.
INDEX TERMS
null
CITATION
Hyung Chan Kim, R.S. Ramakrishna, Wook Shin, Kouichi Sakurai, "A Policy Language for the Extended Reference Monitor in Trusted Operating Systems", ARES, 2007, 2012 Seventh International Conference on Availability, Reliability and Security, 2012 Seventh International Conference on Availability, Reliability and Security 2007, pp. 1160-1166, doi:10.1109/ARES.2007.14
29 ms
(Ver 2.0)

Marketing Automation Platform Marketing Automation Tool