A Practical Formal Model for Safety Analysis in Capability-Based Systems
Identifieur interne : 001C00 ( Main/Exploration ); précédent : 001B99; suivant : 001C01A Practical Formal Model for Safety Analysis in Capability-Based Systems
Auteurs : Fred Spiessens [Belgique] ; Peter Van Roy [Belgique]Source :
- Lecture Notes in Computer Science [ 0302-9743 ] ; 2005.
Abstract
Abstract: We present a formal system that models programmable abstractions for access control. Composite abstractions and patterns of arbitrary complexity are modeled as a configuration of communicating subjects. The subjects in the model can express behavior that corresponds to how information and authority are propagated in capability systems. The formalism is designed to be useful for analyzing how information and authority are confined in arbitrary configurations, but it will also be useful in the reverse sense, to calculate the necessary restrictions in a subject’s behavior when a global confinement policy is given. We introduce a subclass of these systems we call ”saturated”, that can provide safe and tractable approximations for the safety properties in arbitrary configurations of collaborating entities.
Url:
DOI: 10.1007/11580850_14
Affiliations:
- Belgique
- Province du Brabant wallon, Région wallonne
- Louvain-la-Neuve
- Université catholique de Louvain
Links toward previous steps (curation, corpus...)
- to stream Istex, to step Corpus: 000E56
- to stream Istex, to step Curation: 000C05
- to stream Istex, to step Checkpoint: 001532
- to stream Main, to step Merge: 001C29
- to stream Main, to step Curation: 001C00
Le document en format XML
<record><TEI wicri:istexFullTextTei="biblStruct"><teiHeader><fileDesc><titleStmt><title xml:lang="en">A Practical Formal Model for Safety Analysis in Capability-Based Systems</title><author><name sortKey="Spiessens, Fred" sort="Spiessens, Fred" uniqKey="Spiessens F" first="Fred" last="Spiessens">Fred Spiessens</name></author><author><name sortKey="Van Roy, Peter" sort="Van Roy, Peter" uniqKey="Van Roy P" first="Peter" last="Van Roy">Peter Van Roy</name></author></titleStmt><publicationStmt><idno type="wicri:source">ISTEX</idno><idno type="RBID">ISTEX:F67C068A61CFEA1053719ECFBBD582685E11EB9A</idno><date when="2005" year="2005">2005</date><idno type="doi">10.1007/11580850_14</idno><idno type="url">https://api.istex.fr/document/F67C068A61CFEA1053719ECFBBD582685E11EB9A/fulltext/pdf</idno><idno type="wicri:Area/Istex/Corpus">000E56</idno><idno type="wicri:Area/Istex/Curation">000C05</idno><idno type="wicri:Area/Istex/Checkpoint">001532</idno><idno type="wicri:doubleKey">0302-9743:2005:Spiessens F:a:practical:formal</idno><idno type="wicri:Area/Main/Merge">001C29</idno><idno type="wicri:Area/Main/Curation">001C00</idno><idno type="wicri:Area/Main/Exploration">001C00</idno></publicationStmt><sourceDesc><biblStruct><analytic><title level="a" type="main" xml:lang="en">A Practical Formal Model for Safety Analysis in Capability-Based Systems</title><author><name sortKey="Spiessens, Fred" sort="Spiessens, Fred" uniqKey="Spiessens F" first="Fred" last="Spiessens">Fred Spiessens</name><affiliation wicri:level="4"><country xml:lang="fr">Belgique</country><wicri:regionArea>Université catholique de Louvain, Louvain-la-Neuve</wicri:regionArea><orgName type="university">Université catholique de Louvain</orgName><placeName><settlement type="city">Louvain-la-Neuve</settlement><region type="region" nuts="1">Région wallonne</region><region type="province" nuts="1">Province du Brabant wallon</region></placeName></affiliation><affiliation wicri:level="1"><country wicri:rule="url">Belgique</country></affiliation></author><author><name sortKey="Van Roy, Peter" sort="Van Roy, Peter" uniqKey="Van Roy P" first="Peter" last="Van Roy">Peter Van Roy</name><affiliation wicri:level="4"><country xml:lang="fr">Belgique</country><wicri:regionArea>Université catholique de Louvain, Louvain-la-Neuve</wicri:regionArea><orgName type="university">Université catholique de Louvain</orgName><placeName><settlement type="city">Louvain-la-Neuve</settlement><region type="region" nuts="1">Région wallonne</region><region type="province" nuts="1">Province du Brabant wallon</region></placeName></affiliation><affiliation wicri:level="1"><country wicri:rule="url">Belgique</country></affiliation></author></analytic><monogr></monogr><series><title level="s">Lecture Notes in Computer Science</title><imprint><date>2005</date></imprint><idno type="ISSN">0302-9743</idno><idno type="eISSN">1611-3349</idno></series><idno type="istex">F67C068A61CFEA1053719ECFBBD582685E11EB9A</idno><idno type="DOI">10.1007/11580850_14</idno><idno type="ChapterID">Chap14</idno><idno type="ChapterID">14</idno></biblStruct></sourceDesc></fileDesc><profileDesc><textClass></textClass><langUsage><language ident="en">en</language></langUsage></profileDesc></teiHeader><front><div type="abstract" xml:lang="en">Abstract: We present a formal system that models programmable abstractions for access control. Composite abstractions and patterns of arbitrary complexity are modeled as a configuration of communicating subjects. The subjects in the model can express behavior that corresponds to how information and authority are propagated in capability systems. The formalism is designed to be useful for analyzing how information and authority are confined in arbitrary configurations, but it will also be useful in the reverse sense, to calculate the necessary restrictions in a subject’s behavior when a global confinement policy is given. We introduce a subclass of these systems we call ”saturated”, that can provide safe and tractable approximations for the safety properties in arbitrary configurations of collaborating entities.</div></front></TEI><affiliations><list><country><li>Belgique</li></country><region><li>Province du Brabant wallon</li><li>Région wallonne</li></region><settlement><li>Louvain-la-Neuve</li></settlement><orgName><li>Université catholique de Louvain</li></orgName></list><tree><country name="Belgique"><region name="Région wallonne"><name sortKey="Spiessens, Fred" sort="Spiessens, Fred" uniqKey="Spiessens F" first="Fred" last="Spiessens">Fred Spiessens</name></region><name sortKey="Spiessens, Fred" sort="Spiessens, Fred" uniqKey="Spiessens F" first="Fred" last="Spiessens">Fred Spiessens</name><name sortKey="Van Roy, Peter" sort="Van Roy, Peter" uniqKey="Van Roy P" first="Peter" last="Van Roy">Peter Van Roy</name><name sortKey="Van Roy, Peter" sort="Van Roy, Peter" uniqKey="Van Roy P" first="Peter" last="Van Roy">Peter Van Roy</name></country></tree></affiliations></record>Pour manipuler ce document sous Unix (Dilib)
EXPLOR_STEP=$WICRI_ROOT/Wicri/Musique/explor/MozartV1/Data/Main/Exploration
HfdSelect -h $EXPLOR_STEP/biblio.hfd -nk 001C00 | SxmlIndent | more
Ou
HfdSelect -h $EXPLOR_AREA/Data/Main/Exploration/biblio.hfd -nk 001C00 | SxmlIndent | more
Pour mettre un lien sur cette page dans le réseau Wicri
{{Explor lien
|wiki= Wicri/Musique
|area= MozartV1
|flux= Main
|étape= Exploration
|type= RBID
|clé= ISTEX:F67C068A61CFEA1053719ECFBBD582685E11EB9A
|texte= A Practical Formal Model for Safety Analysis in Capability-Based Systems
}}
| This area was generated with Dilib version V0.6.20. |  |