A Policy Language for the Extended Reference Monitor in Trusted Operating Systems

A
ARES
2007
The Second International Conference on Availability, Reliability and Security (ARES'07)
Abstract - A Policy Language for the Extended Reference Monitor in Trusted Operating Systems

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Hyung Chan Kim Articles by R.S. Ramakrishna Articles by Wook Shin Articles by Kouichi Sakurai

The Second International Conference on Availability, Reliability and Security (ARES'07)

Vienna, Austria

April 10-April 13

ISBN: 0-7695-2775-2

	ASCII Text	x
	Hyung Chan Kim, R.S. Ramakrishna, Wook Shin, Kouichi Sakurai, "A Policy Language for the Extended Reference Monitor in Trusted Operating Systems," Availability, Reliability and Security, International Conference on, pp. 1160-1166, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007.

	BibTex	x
	@article{ 10.1109/ARES.2007.14, author = {Hyung Chan Kim and R.S. Ramakrishna and Wook Shin and Kouichi Sakurai}, title = {A Policy Language for the Extended Reference Monitor in Trusted Operating Systems}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2775-2}, pages = {1160-1166}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2007.14}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - A Policy Language for the Extended Reference Monitor in Trusted Operating Systems SN - 0-7695-2775-2 SP1160 EP1166 A1 - Hyung Chan Kim, A1 - R.S. Ramakrishna, A1 - Wook Shin, A1 - Kouichi Sakurai, PY - 2007 KW - null VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

Hyung Chan Kim, Gwangju Institute of Science and Technology, Korea

R.S. Ramakrishna, Gwangju Institute of Science and Technology, Korea

Wook Shin, University of Illinois at Urbana-Champaign

Kouichi Sakurai, Kyushu University, Fukuoka 812-8581, Japan

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ARES.2007.14

The main focus of current research in Trusted Operating Systems (TOS) is on the enhanced access control of reference monitors which, in turn, control the individual operations on a given access instance. However, many real-life runtime attacks involve behavioral semantics. We have proposed an extended reference monitor to support both access and behavior controls. This results in a sequence of operations which are also of concern in security enforcement. This paper presents a policy language for the extended reference monitor. Our policy language is based on Domain and Type Enforcement (DTE) and Role-Based Access Control (RBAC). Permission is defined as an event and a state of behavior is represented as a fluent to be accorded with the convention of Event Calculus (EC). Behavior policies can be expressed with the EC style syntax as well as access control policies.

Citation:

Hyung Chan Kim, R.S. Ramakrishna, Wook Shin, Kouichi Sakurai, "A Policy Language for the Extended Reference Monitor in Trusted Operating Systems," ares, pp.1160-1166, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.