History-sensitive versus future-sensitive approaches to security in distributed systems

Alejandro Mario Hernandez, Flemming Nielson

    Research output: Chapter in Book/Report/Conference proceedingArticle in proceedingsResearchpeer-review

    Abstract

    We consider the use of aspect oriented techniques as a flexible way to deal with security policies in distributed systems. Recent work suggests to use aspects for analysing the future behaviour of programs and to make access control decisions based on this; this gives the flavour of dealing with information flow rather than mere access control. We show in this paper that it is beneficial to augment this approach with history based components as is the traditional approach in reference monitor based approaches to mandatory access control. Our developments are performed in an aspect-oriented coordination language aiming to describe the Bell-LaPadula policy as elegantly as possible. Furthermore, the resulting language has the capability of combining both history- and future-sensitive policies, providing even more flexibility and power.
    Original languageEnglish
    Title of host publicationICE2010 : Third Interaction and Concurrency Experience
    VolumeEPTCS 38
    Pages29-43
    Publication statusE-pub ahead of print - 2010
    EventDisCoTec2010 : ICE2010 Satellite Workshop - CWI, Amsterdam
    Duration: 1 Jan 2010 → …

    Conference

    ConferenceDisCoTec2010 : ICE2010 Satellite Workshop
    CityCWI, Amsterdam
    Period01/01/2010 → …

    Fingerprint

    Dive into the research topics of 'History-sensitive versus future-sensitive approaches to security in distributed systems'. Together they form a unique fingerprint.

    Cite this