中文
相关论文

相关论文: Security Policy Consistency

200 篇论文

Management of security policies has become increasingly difficult given the number of domains to manage, taken into consideration their extent and their complexity. Security experts has to deal with a variety of frameworks and specification…

密码学与安全 · 计算机科学 2013-04-02 Othman Benammar , Hicham Elasri , Abderrahim Sekkaki

The software supply chain involves a multitude of tools and processes that enable software developers to write, build, and ship applications. Recently, security compromises of tools or processes has led to a surge in proposals to address…

密码学与安全 · 计算机科学 2022-09-12 Marcela S. Melara , Mic Bowman

The European Union (EU) has been pursuing new cyber security policies in recent years. This paper presents a short reflection of four such policies. The focus is on potential incoherency, meaning a lack of integration, divergence between…

密码学与安全 · 计算机科学 2024-09-30 Jukka Ruohonen

Workflows specify collections of tasks that must be executed under the responsibility or supervision of human users. Workflow management systems and workflow-driven applications need to enforce security policies in the form of access…

密码学与安全 · 计算机科学 2017-06-23 Daniel Ricardo dos Santos , Silvio Ranise

The number of people accessing online services is increasing day by day, and with new users, comes a greater need for effective and responsive cyber-security. Our goal in this study was to find out if there are common patterns within the…

密码学与安全 · 计算机科学 2024-05-15 Gábor Antal , Balázs Mosolygó , Norbert Vándor , Péter Hegedüs

Consider an organization whose users send requests in natural language to an AI system that fulfills them by carrying out specific tasks. In this paper, we consider the problem of ensuring such user requests comply with a list of diverse…

计算与语言 · 计算机科学 2026-03-03 Pedro Cisneros-Velarde

The advent of large-scale, complex computing systems has dramatically increased the difficulties of securing accesses to systems' resources. To ensure confidentiality and integrity, the exploitation of access control mechanisms has thus…

软件工程 · 计算机科学 2015-08-18 Andrea Margheri , Rosario Pugliese , Francesco Tiezzi

System security assurance provides the confidence that security features, practices, procedures, and architecture of software systems mediate and enforce the security policy and are resilient against security failure and attacks. Alongside…

密码学与安全 · 计算机科学 2022-08-04 Ankur Shukla , Basel Katt , Livinus Obiora Nweke , Prosper Kandabongee Yeng , Goitom Kahsay Weldehawaryat

Ensuring compliance of organizations to federal regulations is a growing concern. This paper presents a framework and methods to verify whether an implemented low-level security policy is compliant to a high-level security policy. Our…

密码学与安全 · 计算机科学 2008-10-01 Vaibhav Gowadia , Csilla Farkas , Michiharu Kudo

The task of designing secure software systems is fraught with uncertainty, as data on uncommon attacks is limited, costs are difficult to estimate, and technology and tools are continually changing. Consequently, experts may interpret the…

密码学与安全 · 计算机科学 2013-06-03 Simon Miller , Susan Appleby , Jonathan M. Garibaldi , Uwe Aickelin

Constraints such as separation-of-duty are widely used to specify requirements that supplement basic authorization policies. However, the existence of constraints (and authorization policies) may mean that a user is unable to fulfill…

密码学与安全 · 计算机科学 2016-12-20 Pierre Bergé , Jason Crampton , Gregory Gutin , Rémi Watrigant

Requirements are informal and semi-formal descriptions of the expected behavior of a system. They are usually expressed in the form of natural language sentences and checked for errors manually, e.g., by peer reviews. Manual checks are…

计算机科学中的逻辑 · 计算机科学 2018-04-30 Simone Vuotto

A security policy specifies a security property as the maximal information flow. A distributed system composed of interacting processes implicitly defines an intransitive security policy by repudiating direct information flow between…

密码学与安全 · 计算机科学 2013-10-15 Jean Quilbeuf , Georgeta Igna , Denis Bytschkow , Harald Ruess

Cybersecurity incidents such as data breaches have become increasingly common, affecting millions of users and organizations worldwide. The complexity of cybersecurity threats challenges the effectiveness of existing security communication…

密码学与安全 · 计算机科学 2025-04-04 Carolina Carreira , Alexandra Mendes , João F. Ferreira , Nicolas Christin

A workflow specification defines a set of steps and the order in which those steps must be executed. Security requirements and business rules may impose constraints on which users are permitted to perform those steps. A workflow…

数据结构与算法 · 计算机科学 2013-03-14 Jason Crampton , Gregory Gutin

Data consistency is very desirable because strong semantic properties make it easier to write correct programs that perform as users expect. However, there are good reasons why consistency may have to be weakened to achieve other business…

数据库 · 计算机科学 2009-09-15 Shel Finkelstein , Dean Jacobs , Rainer Brendle

A security policy states the acceptable actions of an information system, as the actions bear on security. There is a pressing need for organizations to declare their security policies, even informal statements would be better than the…

密码学与安全 · 计算机科学 2007-05-23 James A. Hoagland , Raju Pandey , Karl N. Levitt

For security and privacy management and enforcement purposes, various policy languages have been presented. We give an overview on 27 security and privacy policy languages and present a categorization framework for policy languages. We show…

密码学与安全 · 计算机科学 2015-12-02 Saffija Kasem-Madani , Michael Meier

We consider the automatic verification of information flow security policies of web-based workflows, such as conference submission systems like EasyChair. Our workflow description language allows for loops, non-deterministic choice, and an…

计算机科学中的逻辑 · 计算机科学 2017-08-31 Bernd Finkbeiner , Christian Müller , Helmut Seidl , Eugen Zălinescu

Constraint Handling Rules (CHR) is both an effective concurrent declarative constraint-based programming language and a versatile computational formalism. While conceptually simple, CHR is distinguished by a remarkable combination of…

编程语言 · 计算机科学 2017-01-11 Thom Fruehwirth
‹ 上一页 1 2 3 10 下一页 ›