Skip to Main content Skip to Navigation
Theses

Réécriture et Modularité pour les Politiques de Sécurité

Anderson Santana de Oliveira 1
1 PAREO - Formal islands: foundations and applications
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : In this thesis we address the modular specification and analysis of flexible, rule-based policies. We introduce the use of the strategic rewriting formalism in this domain, such that our framework inherits techniques, theorems, and tools from the rewriting theory. This allows us to easily state and verify important policy properties such as the absence of conflicts, for instance. Moreover, we develop rewrite-based methods to verify elaborate policy properties such as the safety problem in access control and the detection of information flows in mandatory policies.
We show that strategies are important to preserve policy properties under composition. The rich strategy languages available in systems like Tom, Stratego, Maude, ASF+SDF and Elan allows us to define several kinds of policy combiners.
Finally, in this thesis we provide a systematic methodology to enforce rewrite-based policies on existing applications through aspect-oriented programming. Policies are weaved into the existing code, resulting in programs that implement a reference monitor for the given policy. Reuse is improved since policies and programs can be maintained independently from each other.
Document type :
Theses
Complete list of metadatas

Cited literature [149 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-00335079
Contributor : Anderson Santana de Oliveira <>
Submitted on : Tuesday, October 28, 2008 - 2:01:45 PM
Last modification on : Friday, October 23, 2020 - 4:36:27 PM
Long-term archiving on: : Tuesday, October 9, 2012 - 2:35:29 PM

Identifiers

  • HAL Id : tel-00335079, version 1

Collections

Citation

Anderson Santana de Oliveira. Réécriture et Modularité pour les Politiques de Sécurité. Génie logiciel [cs.SE]. Université Henri Poincaré - Nancy I, 2008. Français. ⟨tel-00335079⟩

Share

Metrics

Record views

515

Files downloads

815