Composing expressive runtime security policies

Abstract

Program monitors enforce security policies by interposing themselves into the control flow of untrusted software whenever that software attempts to execute security-relevant actions. At the point of interposition, a monitor has authority to permit or deny (perhaps conditionally) the untrusted software's attempted action. Program monitors are common security enforcement mechanisms and integral parts of operating systems, virtual machines, firewalls, network auditors, and antivirus and antispyware tools.

Document Details

Document Type
Pub Defense Publication
Publication Date
May 01, 2009
Source ID
10.1145/1525880.1525882

Entities

People

  • David Walker
  • Jay Ligatti
  • Lujo Bauer

Organizations

  • Agricultural Research Development Agency
  • Army Research Office
  • Carnegie Mellon University
  • Division of Computer and Network Systems
  • National Science Foundation
  • Princeton University
  • University of South Florida

Tags

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Parallel and Distributed Computing.
  • Systems Analysis and Design