A Theory of Runtime Enforcement, with Results

9 years 7 days ago
A Theory of Runtime Enforcement, with Results
This paper presents a theory of runtime enforcement based on mechanism models called MRAs (Mandatory Results Automata). MRAs can monitor and transform security-relevant actions and their results. Because previous work could not model monitors transforming results, MRAs capture realistic behaviors outside the scope of previous models. MRAs also have a simple but realistic operational semantics that makes it straightforward to define concrete MRAs. Moreover, the definitions of policies and enforcement with MRAs are significantly simpler and more expressive than those of previous models. Putting all these features together, we argue that MRAs make good general models of runtime mechanisms, upon which a theory of runtime enforcement can be based. We develop some enforceability theory by characterizing the policies MRAs can and cannot enforce. Key words: Security models, enforceability theory
Jay Ligatti, Srikar Reddy
Added 09 Nov 2010
Updated 09 Nov 2010
Type Conference
Year 2010
Authors Jay Ligatti, Srikar Reddy
Comments (0)