DocumentCode
1534610
Title
A specification and verification method for preventing denial of service
Author
Yu, Che-Fn ; Gligor, Virgil D.
Author_Institution
Dept. of Electr. Eng., Maryland Univ., College Park, MD, USA
Volume
16
Issue
6
fYear
1990
fDate
6/1/1990 12:00:00 AM
Firstpage
581
Lastpage
592
Abstract
A specification and verification method is presented for preventing denial of service in absence of failures and of integrity violations. The notion of user agreements is introduced, and it is argued that lack of specifications for these agreements and for simultaneity conditions makes it impossible to demonstrate denial-of-service prevention, in spite of demonstrably fair service access. The use of this method is illustrated with an example and it is explained why current methods for specification and verification of safety and liveness properties of concurrent programs do not handle this problem. The proposed specification and verification method is meant to augment current methods for secure system design
Keywords
formal specification; security of data; concurrent programs; denial-of-service prevention; failure absence; integrity violations; simultaneity conditions; specification method; user agreements; verification method; Access control; Computer crime; Delay; Fault tolerance; Laboratories; Logic; Safety; Security;
fLanguage
English
Journal_Title
Software Engineering, IEEE Transactions on
Publisher
ieee
ISSN
0098-5589
Type
jour
DOI
10.1109/32.55087
Filename
55087
Link To Document