• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>International symposium on trustworthy global computing >Trust-Based Enforcement of Security Policies
【24h】

Trust-Based Enforcement of Security Policies

机译:基于信任的安全策略实施

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Two conflicting high-level goals govern the enforcement of security policies, abridged in the phrase "high security at a low cost". While these drivers seem irreconcilable, formal modelling languages and automated verification techniques can facilitate the task of finding the right balance. We propose a modelling language and a framework in which security checks can be relaxed or strengthened to save resources or increase protection, on the basis of trust relationships among communicating parties. Such relationships are automatically derived through a reputation system, hence adapt dynamically to the observed behaviour of the parties and are not fixed a priori. In order to evaluate the impact of the approach, we encode our modelling language in StoKlAIM, which enables verification via the dedicated statistical model checker SAM. The overall approach is applied to a fragment of a Wireless Sensor Network, where there is a clear tension between devices with limited resources and the cost for securing the communication.
机译:在安全策略的执行方面有两个相互矛盾的高层目标,这些短语在“以低成本提供高安全性”一词中被删节。尽管这些驱动因素似乎不可调和,但正式的建模语言和自动验证技术可以促进找到适当平衡的任务。我们提出了一种建模语言和框架,其中可以基于通信方之间的信任关系来放宽或加强安全检查,以节省资源或增强保护。这些关系是通过信誉系统自动得出的,因此可以动态地适应各方观察到的行为,并且不会事先确定。为了评估该方法的影响,我们在StoKlAIM中对我们的建模语言进行编码,该语言可通过专用统计模型检查器SAM进行验证。整个方法适用于无线传感器网络的一个片段,其中资源有限的设备与确保通信安全的成本之间存在明显的紧张关系。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号