论文信息 - A Process Algebraic Approach to Security Policies

A Process Algebraic Approach to Security Policies

We discuss the nature of security policies, particularly those that arise in the context of healthcare informatics, and the kind of mathematical framework needed to describe and reason about them. Various special purpose frameworks for this purpose have been presented over the years, many using bespoke logics and models of computation. We argue that the properties of interest can be expressed cleanly in a mainstream formal method, in particular in the process algebra CSP. This has a number of advantages: we have a well-established, uniform framework with well-defined semantics to work with and access to a number of well-established tools to verify and validate our models and implementations. By way of illustration we describe a CSP formulation of a policy for a clinical trials application drawn for the Framework 5 HARP Project.

Peter Y. A. Ryan | Ragni Ryvold Arnesen

[1] Steve A. Schneider. Security properties and CSP , 1996, Proceedings 1996 IEEE Symposium on Security and Privacy.

[2] Peter Y. A. Ryan,et al. Process algebra and non-interference , 2001 .

[3] Michael Goldsmith,et al. Modelling and analysis of security protocols , 2001 .

[4] Sabina Petride,et al. Review of "Concurrent and real-time systems: the CSP approach" by Steve Schneider. Wiley 1999. , 2004, SIGA.

[5] Steve A. Schneider,et al. Concurrent and Real-time Systems: The CSP Approach , 1999 .

[6] Fred B. Schneider,et al. Enforceable security policies , 2000, TSEC.

[7] Peter Y. A. Ryan,et al. Mathematical Models of Computer Security , 2000, FOSAD.

[8] C. A. R. Hoare,et al. Communicating Sequential Processes (Reprint) , 1983, Commun. ACM.

[9] Andrew William Roscoe,et al. The Theory and Practice of Concurrency , 1997 .