IRIS

Runtime techniques bring new promises of accuracy and flexibility in enforcing security policies. While static security enforcement was previously studied and classified, this work is the first to survey the state of the art on runtime security enforcement. Our purpose is to encourage a better understanding of limitations and advantages of enforcement techniques and their implementations. We classify techniques by criteria such as abstraction level, enforced policies and security guarantees. We analyse several implementations of each technique, from the point of view of trust model, policy language and performance overhead. Finally, we discuss research issues for further investigation in policy enforcement.

A survey of runtime policy enforcement techniques and implementations / Gheorghe, Gabriela; Crispo, Bruno. - ELETTRONICO. - (2011), pp. 1-43.

A survey of runtime policy enforcement techniques and implementations

Gheorghe, Gabriela
Primo
;Crispo, Bruno
Ultimo
2011-01-01

Abstract

Runtime techniques bring new promises of accuracy and flexibility in enforcing security policies. While static security enforcement was previously studied and classified, this work is the first to survey the state of the art on runtime security enforcement. Our purpose is to encourage a better understanding of limitations and advantages of enforcement techniques and their implementations. We classify techniques by criteria such as abstraction level, enforced policies and security guarantees. We analyse several implementations of each technique, from the point of view of trust model, policy language and performance overhead. Finally, we discuss research issues for further investigation in policy enforcement.
2011
Trento
Università degli Studi di Trento, Dipartimento di Ingegneria e Scienza dell'Informazione
A survey of runtime policy enforcement techniques and implementations / Gheorghe, Gabriela; Crispo, Bruno. - ELETTRONICO. - (2011), pp. 1-43.
Gheorghe, Gabriela; Crispo, Bruno
File in questo prodotto:
File Dimensione Formato  
techRep477.pdf

accesso aperto

Tipologia: Versione editoriale (Publisher’s layout)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 907.07 kB
Formato Adobe PDF
Visualizza/Apri
907.07 kB Adobe PDF Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/359679
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus ND
  • ???jsp.display-item.citation.isi??? ND
social impact