中文
相关论文

相关论文: Security Policy Specification Using a Graphical Ap…

200 篇论文

Static analysis remains one of the most popular approaches for detecting and correcting poor or vulnerable program code. It involves the examination of code listings, test results, or other documentation to identify errors, violations of…

人工智能 · 计算机科学 2021-08-27 Fitzroy D. Nembhard , Marco M. Carvalho

The area of research includes control theory, dynamic systems, parameters of the external environment, mode, integral indicators, British standards. The main idea of the article is information security. The activity of a large-scale object…

最优化与控制 · 数学 2025-01-29 Sergey Masaev , Andrey Minkin , Yuri Bezborodov , Dmitry Edimichev , Yass Salal

The software supply chain involves a multitude of tools and processes that enable software developers to write, build, and ship applications. Recently, security compromises of tools or processes has led to a surge in proposals to address…

密码学与安全 · 计算机科学 2022-09-12 Marcela S. Melara , Mic Bowman

Implicit authentication consists of a server authenticating a user based on the user's usage profile, instead of/in addition to relying on something the user explicitly knows (passwords, private keys, etc.). While implicit authentication…

密码学与安全 · 计算机科学 2015-03-03 Josep Domingo-Ferrer , Qianhong Wu , Alberto Blanco-Justicia

Privacy policies are the main way to obtain information related to personal data collection and processing. Originally, privacy policies were presented as textual documents. However, the unsuitability of this format for the needs of today's…

计算机与社会 · 计算机科学 2020-09-14 Victor Morel , Raúl Pardo

A major challenge to deploying cyber-physical systems with learning-enabled controllers is to ensure their safety, especially in the face of changing environments that necessitate runtime knowledge acquisition. Model-checking and automated…

编程语言 · 计算机科学 2025-02-27 Yao Feng , Jun Zhu , André Platzer , Jonathan Laurent

The need for systems to explain behavior to users has become more evident with the rise of complex technology like machine learning or self-adaptation. In general, the need for an explanation arises when the behavior of a system does not…

软件工程 · 计算机科学 2021-08-16 Mersedeh Sadeghi , Verena Klös , Andreas Vogelsang

A Java File Security System (JFSS) [1] has been developed by us. That is an ecrypted file system. It is developed by us because there are so many file data breaches in the past and current history and they are going to increase day by day…

软件工程 · 计算机科学 2013-12-09 Brijender Kahanwal , Tejinder Pal Singh

This report presents a taxonomy of vulnerabilities created as a part of an effort to develop a framework for deriving verification and validation strategies to assess software security. This taxonomy is grounded in a theoretical model of…

密码学与安全 · 计算机科学 2007-05-23 Anil Bazaz , James D. Arthur

AI policy sets boundaries on acceptable behavior for AI models, but this is challenging in the context of large language models (LLMs): how do you ensure coverage over a vast behavior space? We introduce policy maps, an approach to AI…

人机交互 · 计算机科学 2025-08-04 Michelle S. Lam , Fred Hohman , Dominik Moritz , Jeffrey P. Bigham , Kenneth Holstein , Mary Beth Kery

This paper studies the synthesis of control policies for an agent that has to satisfy a temporal logic specification in a partially observable environment, in the presence of an adversary. The interaction of the agent (defender) with the…

系统与控制 · 电气工程与系统科学 2020-11-09 Bhaskar Ramasubramanian , Luyao Niu , Andrew Clark , Linda Bushnell , Radha Poovendran

Opacity is an important information-flow security property in the analysis of cyber-physical systems. It captures the plausible deniability of the system's secret behavior in the presence of an intruder that may access the information flow.…

系统与控制 · 计算机科学 2019-02-26 Xiang Yin , Majid Zamani

An established trend in software engineering insists on using components (sometimes also called services or packages) to encapsulate a set of related functionalities or data. By defining interfaces specifying what functionalities they…

软件工程 · 计算机科学 2015-07-29 Daniel Ricardo dos Santos , Silvio Ranise , Serena Elisa Ponta

We give a rigorous characterization of what it means for a programming language to be memory safe, capturing the intuition that memory safety supports local reasoning about state. We formalize this principle in two ways. First, we show how…

编程语言 · 计算机科学 2018-04-10 Arthur Azevedo de Amorim , Catalin Hritcu , Benjamin C. Pierce

Large language models (LLMs) are increasingly applied in fields such as finance, education, and governance due to their ability to generate human-like text and adapt to specialized tasks. However, their widespread adoption raises critical…

密码学与安全 · 计算机科学 2025-05-26 Yu Wang , Cailing Cai , Zhihua Xiao , Peifung E. Lam

We introduce a prototype tool strategFTO addressing the verification of a security property in critical software. We consider a recent definition of timed opacity where an attacker aims to deduce some secret while having access only to the…

密码学与安全 · 计算机科学 2022-11-28 Étienne André , Shapagat Bolat , Engel Lefaucheux , Dylan Marinho

Access control is fundamental to computer security, and has thus been the subject of extensive formal study. In particular, *relative expressiveness analysis* techniques have used formal mappings called *simulations* to explore whether one…

密码学与安全 · 计算机科学 2015-05-05 William C. Garrison , Adam J. Lee

The design and verification of cryptographic protocols is a notoriously difficult task, even in symbolic models which take an abstract view of cryptography. This is mainly due to the fact that protocols may interact with an arbitrary…

密码学与安全 · 计算机科学 2015-07-01 Myrto Arapinis , Stéphanie Delaune , Steve Kremer

Access control (AC) is the core of every architectural solution for information security. Indeed, no effective protection scheme can abstract from the careful design of access control policies, and infrastructures underlying modern…

密码学与安全 · 计算机科学 2017-10-11 Manuel Cheminod , Luca Durante , Lucia Seno , Fulvio Valenza , Adriano Valenzano

Considerable research effort has been devoted to the study of Policy in the domain of Information Security Management (ISM). However, our review of ISM literature identified four key deficiencies that reduce the utility of the guidance to…

计算机与社会 · 计算机科学 2016-06-06 Moneer Alshaikh , Sean B. Maynard , Atif Ahmad , Shanton Chang