A specification language for information security policies Export

@inproceedings{Garcia09, abstract = {On an information system, a security policy specifies constraints on resources accessed by processes and information flow among them, and also constraints on external access by outsiders. In order to enforce an information security policy, system administrators face two main problems: First, security policy is often stated informally, leading to ambiguity, inconsistency and incompleteness, and in second place, security policy constraints must be translated on several low level specifications such as operating system access control rules, firewall filtering rules, etc. Is a difficult task to verify if those low level specifications actually enforce the security policy. In this paper we present an information security specification based on process calculus which could be translated to low level specifications.}, address = {Stevens Point, Wisconsin, USA}, author = {Garcia, Juan M.}, booktitle = {Recent Advances in Applied Mathematics and Computational and Information Sciences}, citeulike-article-id = {6087639}, citeulike-linkout-0 = {http://portal.acm.org/citation.cfm?id=1569851}, citeulike-linkout-1 = {http://www.wseas.us/books/2009/houston/AAMCIS2.pdf}, isbn = {978-960-474-071-0}, issn = {1790-5117}, keywords = {2009, information-flow, language, process-algebra, specification}, location = {Houston, USA}, pages = {437--440}, posted-at = {2009-11-09 10:58:20}, priority = {2}, publisher = {World Scientific and Engineering Academy and Society (WSEAS)}, title = {A specification language for information security policies}, url = {http://portal.acm.org/citation.cfm?id=1569851}, volume = {II}, year = {2009} }

TY - CONF ID - Garcia09 L3 - citeulike-article-id:6087639 N2 - On an information system, a security policy specifies constraints on resources accessed by processes and information flow among them, and also constraints on external access by outsiders. In order to enforce an information security policy, system administrators face two main problems: First, security policy is often stated informally, leading to ambiguity, inconsistency and incompleteness, and in second place, security policy constraints must be translated on several low level specifications such as operating system access control rules, firewall filtering rules, etc. Is a difficult task to verify if those low level specifications actually enforce the security policy. In this paper we present an information security specification based on process calculus which could be translated to low level specifications. CY - Houston, USA SN - 978-960-474-071-0 AD - Stevens Point, Wisconsin, USA EP - 440 TI - A specification language for information security policies PB - World Scientific and Engineering Academy and Society (WSEAS) VL - II T2 - Recent Advances in Applied Mathematics and Computational and Information Sciences SP - 437 KW - 2009 KW - information-flow KW - language KW - process-algebra KW - specification AU - Garcia, Juan PY - 2009/// UR - http://portal.acm.org/citation.cfm?id=1569851 ER -