Model Checking Usage Policies

Authors:
Massimo Bartoletti;Pierpaolo Degano;Gian Luigi Ferrari;Roberto Zunino
Affiliations:
Dipartimento di Matematica e Informatica, Università degli Studi di Cagliari, Italy and Dipartimento di Informatica, Università di Pisa, Italy;Dipartimento di Informatica, Università di Pisa, Italy;Dipartimento di Informatica, Università di Pisa, Italy;Dipartimento di Ingegneria e Scienza dell'Informazione, Università di Trento, Italy
Venue:
Trustworthy Global Computing
Year:
2009

Citing 14
Cited 6

Enforcing trace properties by program transformation

Proceedings of the 27th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
SASI enforcement of security policies: a retrospective

Proceedings of the 1999 workshop on New security paradigms
Type reconstruction for linear &pgr;-calculus with I/O subtyping

Information and Computation
Resource usage analysis

POPL '02 Proceedings of the 29th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Enforcing Safety Properties Using Type Specialization

ESOP '01 Proceedings of the 10th European Symposium on Programming Languages and Systems
On the Decidability of Model Checking for Several µ-calculi and Petri Nets

CAAP '94 Proceedings of the 19th International Colloquium on Trees in Algebra and Programming
Composing security policies with polymer

Proceedings of the 2005 ACM SIGPLAN conference on Programming language design and implementation
Types and Effects for Secure Service Orchestration

CSFW '06 Proceedings of the 19th IEEE workshop on Computer Security Foundations
Semantics-Based Design for Secure Web Services

IEEE Transactions on Software Engineering
Types and Deadlock Freedom in a Calculus of Services, Sessions and Pipelines

AMAST 2008 Proceedings of the 12th international conference on Algebraic Methodology and Software Technology
Spatial and Behavioral Types in the Pi-Calculus

CONCUR '08 Proceedings of the 19th international conference on Concurrency Theory
Types and Effects for resource usage analysis

FOSSACS'07 Proceedings of the 10th international conference on Foundations of software science and computational structures
History-based access control with local policies

FOSSACS'05 Proceedings of the 8th international conference on Foundations of Software Science and Computation Structures
HBAC: a model for history-based access control and its model checking

ESORICS'06 Proceedings of the 11th European conference on Research in Computer Security

Modular plans for secure service composition

ARSPA-WITS'10 Proceedings of the 2010 joint conference on Automated reasoning for security protocol analysis and issues in the theory of security
Elective temporal logic

Proceedings of the joint ACM SIGSOFT conference -- QoSA and ACM SIGSOFT symposium -- ISARCS on Quality of software architectures -- QoSA and architecting critical systems -- ISARCS
Call-by-contract for service discovery, orchestration and recovery

Rigorous software engineering for service-oriented systems
Tools and verification

Rigorous software engineering for service-oriented systems
Nominal automata for resource usage control

CIAA'12 Proceedings of the 17th international conference on Implementation and Application of Automata
Towards nominal context-free model-checking

CIAA'13 Proceedings of the 18th international conference on Implementation and Application of Automata

Quantified Score

Hi-index	0.01

Visualization

Abstract

We propose a model for specifying, analysing and enforcing safe usage of resources. Our usage policies allow for parametricity over resources, and they can be enforced through finite state automata. The patterns of resource access and creation are described through a basic calculus of usages. In spite of the augmented flexibility given by resource creation and by policy parametrization, we devise an efficient (polynomial-time) model-checking technique for deciding when a usage is resource-safe, i.e. when it complies with all the relevant usage policies.