English

Checking Security Policy Compliance

Cryptography and Security 2008-10-01 v1
Authors: Vaibhav Gowadia , Csilla Farkas , Michiharu Kudo
View on arXiv PDF

Abstract

Ensuring compliance of organizations to federal regulations is a growing concern. This paper presents a framework and methods to verify whether an implemented low-level security policy is compliant to a high-level security policy. Our compliance checking framework is based on organizational and security metadata to support refinement of high-level concepts to implementation specific instances. Our work uses the results of refinement calculus to express valid refinement patterns and their properties. Intuitively, a low-level security policy is compliant to a high-level security policy if there is a valid refinement path from the high-level security policy to the low-level security policy. Our model is capable of detecting violations of security policies, failures to meet obligations, and capability and modal conflicts.

Keywords

formal verification verification computer security

Cite

@article{arxiv.0809.5266,
  title  = {Checking Security Policy Compliance},
  author = {Vaibhav Gowadia and Csilla Farkas and Michiharu Kudo},
  journal= {arXiv preprint arXiv:0809.5266},
  year   = {2008}
}

Comments

23 pages; submitted to TKDE; original submission 15 mar 2007; revised 20 jan 2008

Related papers

View all related →
Software Engineering · Computer Science
Automated Mapping of UML Activity Diagrams to Formal Specifications for Supporting Containment Checking
Faiz UL Muram, Huy Tran, Uwe Zdun
2014-04-04
Cryptography and Security · Computer Science
Formal Checking of Multiple Firewalls
Nihel Ben Youssef Ben Souayeh, Adel Bouhoula
2012-07-17
Computation and Language · Computer Science
Cross-Policy Compliance Detection via Question Answering
Marzieh Saeidi, Majid Yazdani, Andreas Vlachos
2021-09-09
Cryptography and Security · Computer Science
Security Policy Enforcement Through Refinement Process
Nicolas Stouls, Marie-Laure Potet
2010-04-12
Cryptography and Security · Computer Science
Secure Conformance Checking using Token-based Replay and Homomorphic Encryption
Luis-Armando Rodríguez-Flores, Luciano García-Bañuelos, Abel Armas-Cervantes, Astrid-Monserrat Rivera-Partida
2026-04-29
Software Engineering · Computer Science
Checking Security Compliance between Models and Code
Katja Tuma, Sven Peldszus, Daniel Strüber, Riccardo Scandariato +1
2022-03-21
Software Engineering · Computer Science
Conformance checking: A state-of-the-art literature review
Sebastian Dunzer, Matthias Stierle, Martin Matzner, Stephan Baier
2020-07-22
Software Engineering · Computer Science
Verifying Policy Enforcers
Oliviero Riganelli, Daniela Micucci, Leonardo Mariani, Yliès Falcone
2020-10-14
Computers and Society · Computer Science
Automated Sustainability Compliance Checking Using Process Mining and Formal Logic
Clemens Schreiber
2020-06-19
Systems and Control · Electrical Eng. & Systems
Learning Verifiable Control Policies Using Relaxed Verification
Puja Chaudhury, Alexander Estornell, Michael Everett
2025-04-24
Databases · Computer Science
Compliance in Databases: A Study of Structural Policies and Query Optimization
Ahana Pradhan, Srinivas Karthik, Imtiyazuddin Shaik, Srinivas Vivek
2026-04-20
Information Retrieval · Computer Science
Federated Conformance Checking
Majid Rafiei, Mahsa Pourbafrani, Wil M. P. van der Aalst
2025-01-24
Cryptography and Security · Computer Science
A Privacy-Preserving Approach to Conformance Checking
Luis Rodríguez-Flores, Luciano García-Bañuelos, Abel Armas-Cervantes, Astrid Rivera-Partida
2026-05-04
Machine Learning · Computer Science
Evaluating LLM Agent Adherence to Hierarchical Safety Principles: A Lightweight Benchmark for Probing Foundational Controllability Components
Ram Potham
2025-07-11
Computers and Society · Computer Science
Reviewing Uses of Regulatory Compliance Monitoring
Finn Klessascheck, Luise Pufahl
2025-11-12
Cryptography and Security · Computer Science
Quantifying Information Leak Vulnerabilities
Jonathan Heusser, Pasquale Malacaria
2010-07-07
Cryptography and Security · Computer Science
An Automated Framework for Cybersecurity Policy Compliance Assessment Against Security Control Standards
Bikash Saha, Sandeep Kumar Shukla
2026-05-11
Cryptography and Security · Computer Science
Security policy audits: why and how
Arvind Narayanan, Kevin Lee
2024-03-25
Cryptography and Security · Computer Science
Model-Checking the Implementation of Consent
Raúl Pardo, Daniel Le Métayer
2024-09-19
Logic in Computer Science · Computer Science
An Efficient Runtime Validation Framework based on the Theory of Refinement
Mitesh Jain, Panagiotis Manolios
2017-03-17
Cryptography and Security · Computer Science
A Formal Model of Security Controls' Capabilities and Its Applications to Policy Refinement and Incident Management
Cataldo Basile, Gabriele Gatti, Francesco Settanni
2025-01-14
Logic in Computer Science · Computer Science
Mending Fences with Self-Invalidation and Self-Downgrade
Parosh Aziz Abdulla, Mohamed Faouzi Atig, Stefanos Kaxiras, Carl Leonardsson +2
2023-06-22
Cryptography and Security · Computer Science
ESPOON: Enforcing Encrypted Security Policies in Outsourced Environments
Muhammad Rizwan Asghar, Mihaela Ion, Giovanni Russello, Bruno Crispo
2013-06-21
Artificial Intelligence · Computer Science
Verification-Guided Falsification for Safe RL via Explainable Abstraction and Risk-Aware Exploration
Tuan Le, Risal Shefin, Debashis Gupta, Thai Le +1
2025-06-05
Software Engineering · Computer Science
Combining closed-loop test generation and execution by means of model checking
Igor Buzhinsky, Valeriy Vyatkin
2019-07-30
R2 v1 2026-06-21T11:25:49.096Z