English
Related papers

Related papers: Security Policy Specification Using a Graphical Ap…

200 papers

Static analysis remains one of the most popular approaches for detecting and correcting poor or vulnerable program code. It involves the examination of code listings, test results, or other documentation to identify errors, violations of…

Artificial Intelligence · Computer Science 2021-08-27 Fitzroy D. Nembhard , Marco M. Carvalho

The area of research includes control theory, dynamic systems, parameters of the external environment, mode, integral indicators, British standards. The main idea of the article is information security. The activity of a large-scale object…

Optimization and Control · Mathematics 2025-01-29 Sergey Masaev , Andrey Minkin , Yuri Bezborodov , Dmitry Edimichev , Yass Salal

The software supply chain involves a multitude of tools and processes that enable software developers to write, build, and ship applications. Recently, security compromises of tools or processes has led to a surge in proposals to address…

Cryptography and Security · Computer Science 2022-09-12 Marcela S. Melara , Mic Bowman

Implicit authentication consists of a server authenticating a user based on the user's usage profile, instead of/in addition to relying on something the user explicitly knows (passwords, private keys, etc.). While implicit authentication…

Cryptography and Security · Computer Science 2015-03-03 Josep Domingo-Ferrer , Qianhong Wu , Alberto Blanco-Justicia

Privacy policies are the main way to obtain information related to personal data collection and processing. Originally, privacy policies were presented as textual documents. However, the unsuitability of this format for the needs of today's…

Computers and Society · Computer Science 2020-09-14 Victor Morel , Raúl Pardo

A major challenge to deploying cyber-physical systems with learning-enabled controllers is to ensure their safety, especially in the face of changing environments that necessitate runtime knowledge acquisition. Model-checking and automated…

Programming Languages · Computer Science 2025-02-27 Yao Feng , Jun Zhu , André Platzer , Jonathan Laurent

The need for systems to explain behavior to users has become more evident with the rise of complex technology like machine learning or self-adaptation. In general, the need for an explanation arises when the behavior of a system does not…

Software Engineering · Computer Science 2021-08-16 Mersedeh Sadeghi , Verena Klös , Andreas Vogelsang

A Java File Security System (JFSS) [1] has been developed by us. That is an ecrypted file system. It is developed by us because there are so many file data breaches in the past and current history and they are going to increase day by day…

Software Engineering · Computer Science 2013-12-09 Brijender Kahanwal , Tejinder Pal Singh

This report presents a taxonomy of vulnerabilities created as a part of an effort to develop a framework for deriving verification and validation strategies to assess software security. This taxonomy is grounded in a theoretical model of…

Cryptography and Security · Computer Science 2007-05-23 Anil Bazaz , James D. Arthur

AI policy sets boundaries on acceptable behavior for AI models, but this is challenging in the context of large language models (LLMs): how do you ensure coverage over a vast behavior space? We introduce policy maps, an approach to AI…

Human-Computer Interaction · Computer Science 2025-08-04 Michelle S. Lam , Fred Hohman , Dominik Moritz , Jeffrey P. Bigham , Kenneth Holstein , Mary Beth Kery

This paper studies the synthesis of control policies for an agent that has to satisfy a temporal logic specification in a partially observable environment, in the presence of an adversary. The interaction of the agent (defender) with the…

Systems and Control · Electrical Eng. & Systems 2020-11-09 Bhaskar Ramasubramanian , Luyao Niu , Andrew Clark , Linda Bushnell , Radha Poovendran

Opacity is an important information-flow security property in the analysis of cyber-physical systems. It captures the plausible deniability of the system's secret behavior in the presence of an intruder that may access the information flow.…

Systems and Control · Computer Science 2019-02-26 Xiang Yin , Majid Zamani

An established trend in software engineering insists on using components (sometimes also called services or packages) to encapsulate a set of related functionalities or data. By defining interfaces specifying what functionalities they…

Software Engineering · Computer Science 2015-07-29 Daniel Ricardo dos Santos , Silvio Ranise , Serena Elisa Ponta

We give a rigorous characterization of what it means for a programming language to be memory safe, capturing the intuition that memory safety supports local reasoning about state. We formalize this principle in two ways. First, we show how…

Programming Languages · Computer Science 2018-04-10 Arthur Azevedo de Amorim , Catalin Hritcu , Benjamin C. Pierce

Large language models (LLMs) are increasingly applied in fields such as finance, education, and governance due to their ability to generate human-like text and adapt to specialized tasks. However, their widespread adoption raises critical…

Cryptography and Security · Computer Science 2025-05-26 Yu Wang , Cailing Cai , Zhihua Xiao , Peifung E. Lam

We introduce a prototype tool strategFTO addressing the verification of a security property in critical software. We consider a recent definition of timed opacity where an attacker aims to deduce some secret while having access only to the…

Cryptography and Security · Computer Science 2022-11-28 Étienne André , Shapagat Bolat , Engel Lefaucheux , Dylan Marinho

Access control is fundamental to computer security, and has thus been the subject of extensive formal study. In particular, *relative expressiveness analysis* techniques have used formal mappings called *simulations* to explore whether one…

Cryptography and Security · Computer Science 2015-05-05 William C. Garrison , Adam J. Lee

The design and verification of cryptographic protocols is a notoriously difficult task, even in symbolic models which take an abstract view of cryptography. This is mainly due to the fact that protocols may interact with an arbitrary…

Cryptography and Security · Computer Science 2015-07-01 Myrto Arapinis , Stéphanie Delaune , Steve Kremer

Access control (AC) is the core of every architectural solution for information security. Indeed, no effective protection scheme can abstract from the careful design of access control policies, and infrastructures underlying modern…

Cryptography and Security · Computer Science 2017-10-11 Manuel Cheminod , Luca Durante , Lucia Seno , Fulvio Valenza , Adriano Valenzano

Considerable research effort has been devoted to the study of Policy in the domain of Information Security Management (ISM). However, our review of ISM literature identified four key deficiencies that reduce the utility of the guidance to…

Computers and Society · Computer Science 2016-06-06 Moneer Alshaikh , Sean B. Maynard , Atif Ahmad , Shanton Chang