Abstract
In this paper we propose an application of action refinement theory for enforcing security policies at different levels of abstraction. Indeed we assume to have a (high level) specification of a secure system with a possible untrusted component. It is controlled by a controller program, in such a way the system is secure. We show that it is possible to guarantee that the refinement of this system at a lower level of abstraction is still secure, regardless the behavior of the implementation of the untrusted component.
Work partially supported by EU-funded project ‘‘Software Engineering for Service-Oriented Overlay Computers”(SENSORIA) and by EU-funded project ‘‘CONSEQUENCE”.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Bandara, A.K., Lupu, E., Moffett, J.D., Russo, A.: A goal-based approach to policy refinement. In: POLICY, pp. 229–239. IEEE Computer Society Press, Los Alamitos (2004)
Dardenne, A., Lamsweerde, A.V., Fickas, S.: Goal-directed requirements acquisition. In: Science of Computer Programming, pp. 3–50 (1993)
Gorrieri, R., Rensink, A., Zamboni, M.A.: Action refinement. In: Handbook of Proacess Algebra, pp. 1047–1147. Elsevier, Amsterdam (2001)
Greci, P., Martinelli, F., Matteucci, I.: A framework for contract-policy matching based on symbolic simulations for securing mobile device application. In: Margaria, T., Steffen, B. (eds.) ISoLA. Communications in Computer and Information Science, vol. 17, pp. 221–236. Springer, Heidelberg (2008)
Hoare, C.A.R.: Communicating Sequential Processes. Prentice-Hall, Englewood Cliffs (1985)
Carey, V.W.K., Lewis, D.: Automated policy-refinement for managing composite services. In: M-Zones White Paper June 2004, whitepaper 06/04, Ireland (June 2004)
Martinelli, F., Matteucci, I.: An approach for the specification, verification and synthesis of secure systems. Electr. Notes Theor. Comput. Sci. 168, 29–43 (2007)
Milner, R.: Operational and algebraic semantics of concurrent processes. In: van Leewen, J. (ed.) Handbook of Theoretical Computer Science, ch. 19. Formal Models and Semantics, vol. B, pp. 1201–1242. The MIT Press, New York (1990)
Milner, R.: Communicating and mobile systems: the π-calculus. Cambridge University Press, Cambridge (1999)
Rensink, A., Gorrieri, R.: Action refinement as an implementation relations. In: Bidoit, M., Dauchet, M. (eds.) CAAP 1997, FASE 1997, and TAPSOFT 1997. LNCS, vol. 1214, pp. 772–786. Springer, Heidelberg (1997)
Stouls, N., Potet, M.L.: Security policy enforcement through refinement process. In: Julliand, J., Kouchnarenko, O. (eds.) B 2007. LNCS, vol. 4355, pp. 216–231. Springer, Heidelberg (2006)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2009 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Martinelli, F., Matteucci, I. (2009). Idea: Action Refinement for Security Properties Enforcement. In: Massacci, F., Redwine, S.T., Zannone, N. (eds) Engineering Secure Software and Systems. ESSoS 2009. Lecture Notes in Computer Science, vol 5429. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-00199-4_4
Download citation
DOI: https://doi.org/10.1007/978-3-642-00199-4_4
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-00198-7
Online ISBN: 978-3-642-00199-4
eBook Packages: Computer ScienceComputer Science (R0)