Home // ICSNC 2012, The Seventh International Conference on Systems and Networks Communications // View article

Formal Characterization and Automatic Detection of Security Policies Conflicts

Authors:
Hédi Hamdi

Keywords: Policies; Distributed systems; Conflicts; Detection

Abstract:
Policies, which are widely deployed in networking services (e.g., management, QoS, mobility, etc.), are being a promising solution for securing wide distributed systems and one of the most actual directions of research in the information security area. However, Policy-based security may involve interactions between independent decision making components which may lead naturally to inconsistencies, a problem that has been recognized and termed as policy conflict. Work on policy analysis has mainly focused on conflicts that can be determined statically at compile time. Using formal methods, with good tool support, to express the policies, can not only support the detection, but also help all the involved actors in understanding and resolving the conflicts. The main focus of this paper is on giving a theory and automated techniques for discovering common types of security policy conflicts.

Pages: 124 to 129

Copyright: Copyright (c) IARIA, 2012

Publication date: November 18, 2012

Published in: conference

ISSN: 2163-9027

ISBN: 978-1-61208-231-8

Location: Lisbon, Portugal

Dates: from November 18, 2012 to November 23, 2012