Temporal Mode-Checking for Runtime Monitoring of Privacy Policies
Abstract
Fragments of first-order temporal logic are useful for representing many practical privacy and security policies. Past work has proposed two strategies for checking event trace (audit log) compliance with policies: online monitoring and offline audit. Although online monitoring is space- and time efficient, existing techniques insist that satisfying instances of all subformulas of the policy be amenable to caching, which limits expressiveness when some subformulas have infinite support. In contrast, offline audit is brute force and can handle more policies but is not as efficient. This paper proposes a new online monitoring algorithm that caches satisfying instances when it can and falls back to the brute force search when it cannot. Our key technical insight is a new flow and time-sensitive static check of variable groundedness, called the temporal mode check, which determines subformulas for which such caching is feasible and those for which it is not and, hence guides our algorithm. We prove the correctness of our algorithm and evaluate its performance over synthetic traces and realistic policies.
Document Details
- Document Type
- Technical Report
- Publication Date
- May 28, 2014
- Accession Number
- ADA609113
Entities
People
- Anupam Datta
- Deepak Garg
- Limin Jia
- Omar Chowdhury
Organizations
- Carnegie Mellon University