A Policy Language for the Extended Reference Monitor in Trusted Operating Systems

Vienna, Austria April 10-April 13

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ARES.2007.14

The Second International Conference o ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Hyung Chan Kim Articles by R.S. Ramakrishna Articles by Wook Shin Articles by Kouichi Sakurai

	ASCII Text	x
	Hyung Chan Kim, R.S. Ramakrishna, Wook Shin, Kouichi Sakurai, "A Policy Language for the Extended Reference Monitor in Trusted Operating Systems," Availability, Reliability and Security, International Conference on, pp. 1160-1166, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007.

	BibTex	x
	@article{ 10.1109/ARES.2007.14, author = {Hyung Chan Kim and R.S. Ramakrishna and Wook Shin and Kouichi Sakurai}, title = {A Policy Language for the Extended Reference Monitor in Trusted Operating Systems}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2775-2}, pages = {1160-1166}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2007.14}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - A Policy Language for the Extended Reference Monitor in Trusted Operating Systems SN - 0-7695-2775-2 SP1160 EP1166 A1 - Hyung Chan Kim, A1 - R.S. Ramakrishna, A1 - Wook Shin, A1 - Kouichi Sakurai, PY - 2007 KW - null VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

Hyung Chan Kim, Gwangju Institute of Science and Technology, Korea

R.S. Ramakrishna, Gwangju Institute of Science and Technology, Korea

Wook Shin, University of Illinois at Urbana-Champaign

Kouichi Sakurai, Kyushu University, Fukuoka 812-8581, Japan

The main focus of current research in Trusted Operating Systems (TOS) is on the enhanced access control of reference monitors which, in turn, control the individual operations on a given access instance. However, many real-life runtime attacks involve behavioral semantics. We have proposed an extended reference monitor to support both access and behavior controls. This results in a sequence of operations which are also of concern in security enforcement. This paper presents a policy language for the extended reference monitor. Our policy language is based on Domain and Type Enforcement (DTE) and Role-Based Access Control (RBAC). Permission is defined as an event and a state of behavior is represented as a fluent to be accorded with the convention of Event Calculus (EC). Behavior policies can be expressed with the EC style syntax as well as access control policies.

Citation:

Hyung Chan Kim, R.S. Ramakrishna, Wook Shin, Kouichi Sakurai, "A Policy Language for the Extended Reference Monitor in Trusted Operating Systems," ares, pp.1160-1166, The Second International Conference on Availability, Reliability and Security (ARES'07), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.