We address the challenges arising from enforcing security policies in an imperfect world-in a system involving humans, a determined attacker always has a chance of circumventing any security. We motivate our approach by two examples: an on-line auction house; and a airport security system. In our work, security policies are enforced using a probabilistic aspect-oriented approach; policies are combined using a rich set of policy composition operators. We present the examples using a process-based language in which processes and local data are distributed across a number of locations (network addresses). The formal definition of the language gives rise to Markov Decision Processes. © 2010 Springer-Verlag Berlin Heidelberg.
CITATION STYLE
Hankin, C., Nielson, F., & Nielson, H. R. (2010). Probabilistic aspects: Checking security in an imperfect world. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 6084 LNCS, pp. 348–363). https://doi.org/10.1007/978-3-642-15640-3_23
Mendeley helps you to discover research relevant for your work.