Runtime enforcement is a powerful technique to ensure that a program will respect a given security policy. We extend previous works on this topic in several directions. Firstly, we propose a generic notion of enforcement monitors based on a memory device and finite sets of control states and enforcement operations. Moreover, we specify their enforcement abilities w.r.t. the general safety-progress classification of properties. It allows a fine-grain characterization of the space of enforceable properties. Finally, we propose a systematic technique to produce an enforcement monitor from the Streett automaton recognizing a given safety, guarantee, obligation or response security property. © 2008 Springer Berlin Heidelberg.
CITATION STYLE
Falcone, Y., Fernandez, J. C., & Mounier, L. (2008). Synthesizing enforcement monitors wrt. the safety-progress classification of properties. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5352 LNCS, pp. 41–55). https://doi.org/10.1007/978-3-540-89862-7_3
Mendeley helps you to discover research relevant for your work.