Correct Enforcement of Access Control Policy in Modern Operating Systems
Abstract
Consumer operating systems are changing. Modern platforms such as Android, iOS, and Windows 8 provide new abstractions for specifying and enforcing access control policy on third-party applications run by end users. The new abstractions add complexity to both policy specification and enforcement. In this proposal, we focus specifically on the correctness of enforcement in these modern platforms. The proposed work seeks to extract a formal semantics of access control policy by mining existing code bases. We then analyze the extracted model for correct enforcement of security goals. The models will also be compared across platform variations, as well as across different platforms. In doing so, we seek to harden existing platforms and establish stronger trustworthiness in a security-critical layer of platforms relied upon by consumers, enterprises, and governments.
Document Details
- Document Type
- DoD Grant Award
- Publication Date
- Jan 12, 2017
- Source ID
- W911NF1610299
Entities
People
- William Enck
Organizations
- Army Contracting Command
- North Carolina State University
- United States Army