Matching Policies with Security Claims of Mobile Applications

March 04-March 07

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ARES.2008.96

2008 Third International Conference o ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Nataliia Bielova Articles by Marco Dalla Torre Articles by Nicola Dragoni Articles by Ida Siahaan

	ASCII Text	x
	Nataliia Bielova, Marco Dalla Torre, Nicola Dragoni, Ida Siahaan, "Matching Policies with Security Claims of Mobile Applications," Availability, Reliability and Security, International Conference on, pp. 128-135, 2008 Third International Conference on Availability, Reliability and Security, 2008.

	BibTex	x
	@article{ 10.1109/ARES.2008.96, author = {Nataliia Bielova and Marco Dalla Torre and Nicola Dragoni and Ida Siahaan}, title = {Matching Policies with Security Claims of Mobile Applications}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3102-1}, pages = {128-135}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2008.96}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - Matching Policies with Security Claims of Mobile Applications SN - 978-0-7695-3102-1 SP128 EP135 A1 - Nataliia Bielova, A1 - Marco Dalla Torre, A1 - Nicola Dragoni, A1 - Ida Siahaan, PY - 2008 KW - security-by-contract KW - security for mobile code KW - automata modulo theory KW - contract-policy matching VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

The Security-by-Contract (SxC) framework has been recently proposed to address the trust relationship problem of the current security model adopted for mobile devices. The key idea of SxC (similar to the one of Model-Carrying Code) is to augment mobile code with a claim on its security behavior (a contract) that could be matched against a mobile platform policy before downloading the code. The rational is that, thanks to SxC, a digital signature does not just certify the origin of the code but also bind together the code with a contract. In this paper we address one of the key issue of the SxC paradigm, namely the contract-policy matching problem, proposing a prototype for matching policies with security claims of mobile applications. This result can be considered a key step towards the achievement of the SxC main goal: provide a semantics for digital signatures on mobile code, thus being a step in the transition from trusted code to trustworthy code.

Index Terms:

security-by-contract, security for mobile code, automata modulo theory, contract-policy matching

Citation:

Nataliia Bielova, Marco Dalla Torre, Nicola Dragoni, Ida Siahaan, "Matching Policies with Security Claims of Mobile Applications," ares, pp.128-135, 2008 Third International Conference on Availability, Reliability and Security, 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.