Model Checking Distributed Mandatory Access Control Policies

Q Engineering

ACM Transactions on Information and System Security Pub Date : 2015-12-09 DOI:10.1145/2785966

P. Alexander, Lee Pike, Peter Loscocco, George Coker

引用次数: 12

Abstract

This work examines the use of model checking techniques to verify system-level security properties of a collection of interacting virtual machines. Specifically, we examine how local access control policies implemented in individual virtual machines and a hypervisor can be shown to satisfy global access control constraints. The SAL model checker is used to model and verify a collection of stateful domains with protected resources and local MAC policies attempting to access needed resources from other domains. The model is described along with verification conditions. The need to control state-space explosion is motivated and techniques for writing theorems and limiting domains explored. Finally, analysis results are examined along with analysis complexity.

查看原文本刊更多论文

模型检查分布式强制访问控制策略

这项工作检查了模型检查技术的使用，以验证交互虚拟机集合的系统级安全属性。具体来说，我们将研究如何在单个虚拟机和管理程序中实现本地访问控制策略，以满足全局访问控制约束。SAL模型检查器用于对一组有状态域进行建模和验证，这些域具有受保护的资源和试图从其他域访问所需资源的本地MAC策略。对模型进行了描述，并给出了验证条件。控制状态空间爆炸的需要被激发，并且探索了编写定理和限制域的技术。最后，对分析结果和分析复杂度进行了检验。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

ACM Transactions on Information and System Security 工程技术-计算机：信息系统

CiteScore

4.50

自引率

0.00%

发文量

审稿时长

3.3 months

期刊介绍： ISSEC is a scholarly, scientific journal that publishes original research papers in all areas of information and system security, including technologies, systems, applications, and policies.