Model-driven security policy deployment: Property oriented approach

Stere Preda; Nora Cuppens-Boulahia; Frédéric Cuppens; Joaquin Garcia-Alfaro; Laurent Toutain

doi:10.1007/978-3-642-11747-3_10

Model-driven security policy deployment: Property oriented approach

Stere Preda
, Nora Cuppens-Boulahia
, Frédéric Cuppens
, Joaquin Garcia-Alfaro
, Laurent Toutain

ENST Bretagne

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

We address the issue of formally validating the deployment of access control security policies. We show how the use of a formal expression of the security requirements, related to a given system, ensures the deployment of an anomaly free abstract security policy. We also describe how to develop appropriate algorithms by using a theorem proving approach with a modeling language allowing the specification of the system, of the link between the system and the policy, and of certain target security properties. The result is a set of proved algorithms that constitute the certified technique for a reliable security policy deployment.

Original language	English
Title of host publication	Engineering Secure Software and Systems - Second International Symposium, ESSoS 2010, Proceedings
Pages	123-139
Number of pages	17
DOIs	https://doi.org/10.1007/978-3-642-11747-3_10
Publication status	Published - 22 Mar 2010
Externally published	Yes
Event	2nd International Symposium on Engineering Secure Software and Systems, ESSoS 2010 - Pisa, Italy Duration: 3 Feb 2010 → 4 Feb 2010

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	5965 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	2nd International Symposium on Engineering Secure Software and Systems, ESSoS 2010
Country/Territory	Italy
City	Pisa
Period	3/02/10 → 4/02/10

Access to Document

10.1007/978-3-642-11747-3_10

Cite this

Preda, S., Cuppens-Boulahia, N., Cuppens, F., Garcia-Alfaro, J., & Toutain, L. (2010). Model-driven security policy deployment: Property oriented approach. In Engineering Secure Software and Systems - Second International Symposium, ESSoS 2010, Proceedings (pp. 123-139). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5965 LNCS). https://doi.org/10.1007/978-3-642-11747-3_10

Preda, Stere ; Cuppens-Boulahia, Nora ; Cuppens, Frédéric et al. / Model-driven security policy deployment : Property oriented approach. Engineering Secure Software and Systems - Second International Symposium, ESSoS 2010, Proceedings. 2010. pp. 123-139 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{9d7bfa74df2e4a5e88b192b122592435,

title = "Model-driven security policy deployment: Property oriented approach",

abstract = "We address the issue of formally validating the deployment of access control security policies. We show how the use of a formal expression of the security requirements, related to a given system, ensures the deployment of an anomaly free abstract security policy. We also describe how to develop appropriate algorithms by using a theorem proving approach with a modeling language allowing the specification of the system, of the link between the system and the policy, and of certain target security properties. The result is a set of proved algorithms that constitute the certified technique for a reliable security policy deployment.",

author = "Stere Preda and Nora Cuppens-Boulahia and Fr{\'e}d{\'e}ric Cuppens and Joaquin Garcia-Alfaro and Laurent Toutain",

year = "2010",

month = mar,

day = "22",

doi = "10.1007/978-3-642-11747-3\_10",

language = "English",

isbn = "3642117465",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "123--139",

booktitle = "Engineering Secure Software and Systems - Second International Symposium, ESSoS 2010, Proceedings",

note = "2nd International Symposium on Engineering Secure Software and Systems, ESSoS 2010 ; Conference date: 03-02-2010 Through 04-02-2010",

}

Preda, S, Cuppens-Boulahia, N, Cuppens, F, Garcia-Alfaro, J & Toutain, L 2010, Model-driven security policy deployment: Property oriented approach. in Engineering Secure Software and Systems - Second International Symposium, ESSoS 2010, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 5965 LNCS, pp. 123-139, 2nd International Symposium on Engineering Secure Software and Systems, ESSoS 2010, Pisa, Italy, 3/02/10. https://doi.org/10.1007/978-3-642-11747-3_10

Model-driven security policy deployment: Property oriented approach. / Preda, Stere; Cuppens-Boulahia, Nora; Cuppens, Frédéric et al.
Engineering Secure Software and Systems - Second International Symposium, ESSoS 2010, Proceedings. 2010. p. 123-139 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5965 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Model-driven security policy deployment

T2 - 2nd International Symposium on Engineering Secure Software and Systems, ESSoS 2010

AU - Preda, Stere

AU - Cuppens-Boulahia, Nora

AU - Cuppens, Frédéric

AU - Garcia-Alfaro, Joaquin

AU - Toutain, Laurent

PY - 2010/3/22

Y1 - 2010/3/22

N2 - We address the issue of formally validating the deployment of access control security policies. We show how the use of a formal expression of the security requirements, related to a given system, ensures the deployment of an anomaly free abstract security policy. We also describe how to develop appropriate algorithms by using a theorem proving approach with a modeling language allowing the specification of the system, of the link between the system and the policy, and of certain target security properties. The result is a set of proved algorithms that constitute the certified technique for a reliable security policy deployment.

AB - We address the issue of formally validating the deployment of access control security policies. We show how the use of a formal expression of the security requirements, related to a given system, ensures the deployment of an anomaly free abstract security policy. We also describe how to develop appropriate algorithms by using a theorem proving approach with a modeling language allowing the specification of the system, of the link between the system and the policy, and of certain target security properties. The result is a set of proved algorithms that constitute the certified technique for a reliable security policy deployment.

UR - https://www.scopus.com/pages/publications/77949454802

U2 - 10.1007/978-3-642-11747-3_10

DO - 10.1007/978-3-642-11747-3_10

M3 - Conference contribution

AN - SCOPUS:77949454802

SN - 3642117465

SN - 9783642117466

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 123

EP - 139

BT - Engineering Secure Software and Systems - Second International Symposium, ESSoS 2010, Proceedings

Y2 - 3 February 2010 through 4 February 2010

ER -

Preda S, Cuppens-Boulahia N, Cuppens F, Garcia-Alfaro J, Toutain L. Model-driven security policy deployment: Property oriented approach. In Engineering Secure Software and Systems - Second International Symposium, ESSoS 2010, Proceedings. 2010. p. 123-139. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-642-11747-3_10

Model-driven security policy deployment: Property oriented approach

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this