Searching for just a few words should be enough to get started. If you need to make more complex queries, use the tips below to guide you.
Issue title: 18th IEEE Computer Security Foundations Symposium (CSF 18)
Guest editors: J.D. Guttman
Article type: Research Article
Authors: Bartoletti, Massimoa; * | Degano, Pierpaolob | Ferrari, Gian Luigib
Affiliations: [a] Dipartimento di Matematica e Informatica, Università degli Studi di Cagliari, Italy | [b] Dipartimento di Informatica, Università di Pisa, Pisa, Italy
Correspondence: [*] Corresponding author: Massimo Bartoletti, Dipartimento di Matematica e Informatica, Università degli Studi di Cagliari, Via Ospedale, 72, I-09124 Cagliari, Italy. Tel.: +39 070 675 8540; Fax: +39 070 675 8504; E-mail: [email protected].
Abstract: A static approach is proposed to study secure composition of services. We extend the λ-calculus with primitives for selecting and invoking services that respect given security requirements. Security-critical code is enclosed in policy framings with a possibly nested, local scope. Policy framings enforce safety and liveness properties. The actual run-time behaviour of services is over-approximated by a type and effect system. Types are standard, and effects include the actions with possible security concerns – as well as information about which services may be invoked at run-time. An approximation is model checked to verify policy framings within their scopes. This allows for removing any run-time execution monitor, and for determining the plans driving the selection of those services that match the security requirements on demand.
Keywords: Service-oriented computing, language-based security, usage policies, call-by-contract, type and effect systems, model-checking
DOI: 10.3233/JCS-2009-0357
Journal: Journal of Computer Security, vol. 17, no. 5, pp. 799-837, 2009
IOS Press, Inc.
6751 Tepper Drive
Clifton, VA 20124
USA
Tel: +1 703 830 6300
Fax: +1 703 830 2300
[email protected]
For editorial issues, like the status of your submitted paper or proposals, write to [email protected]
IOS Press
Nieuwe Hemweg 6B
1013 BG Amsterdam
The Netherlands
Tel: +31 20 688 3355
Fax: +31 20 687 0091
[email protected]
For editorial issues, permissions, book requests, submissions and proceedings, contact the Amsterdam office [email protected]
Inspirees International (China Office)
Ciyunsi Beili 207(CapitaLand), Bld 1, 7-901
100025, Beijing
China
Free service line: 400 661 8717
Fax: +86 10 8446 7947
[email protected]
For editorial issues, like the status of your submitted paper or proposals, write to [email protected]
如果您在出版方面需要帮助或有任何建, 件至: [email protected]