Security policies are rules that constrain the behaviour of a system. Different, largely unrelated sets of rules typically govern the physical and logical worlds. However, increased hardware and software mobility forces us to consider those rules in an integrated fashion. We present SPIN models of four case studies where mobility plays a role. In each case the model captures both the system of interest and its security policy. The model is then formally checked against a property that represents a principle from the problem domain. The model checking activity shows many examples of policies that are too weak to cope with mobility.
|Title of host publication||Construction and Analysis of Safe, Secure and Interoperable Smart cards (CASSIS)|
|Editors||G. Barthe, L. Burdy, Marieke Huisman, J.-L. Lanet, T. Muntean|
|Place of Publication||Berlin|
|Number of pages||20|
|Publication status||Published - Mar 2004|
|Name||Lecture Notes in Computer Science|
Hartel, P. H., van Eck, P., Etalle, S., & Wieringa, R. J. (2004). Modelling mobility aspects of security policies. In G. Barthe, L. Burdy, M. Huisman, J-L. Lanet, & T. Muntean (Eds.), Construction and Analysis of Safe, Secure and Interoperable Smart cards (CASSIS) (pp. 172-191). (Lecture Notes in Computer Science; Vol. 3362). Berlin: Springer. https://doi.org/10.1007/978-3-540-30569-9_9