Title :
Towards a specification scheme for context-aware security policies for networked appliances
Author :
Watanabe, Takuo ; Yamada, Kiyoshi ; Nagatou, Naoyuki
Author_Institution :
Software Res. Div., Nat. Inst. of Informatics, Tokyo, Japan
Abstract :
This paper describes a secure execution scheme for mobile programs running in networked appliances. The potential threat we are considering is the malicious behaviour of the mobile programs. Our security architecture, called Taurus-1, adopts monitored execution as a basic mechanism for enforcing security policies at runtime. To describe a policy for this architecture, we designed an algebraic policy description language Polaris, in which we can specify a policy as a process consisting of abstract events in a monitored program. The program is modified beforehand for effective detection of its malicious behaviour We discuss how Taurus-1 can provide a security enhancement mechanism for context-aware systems such as networked appliances, and discuss how to specify security policies for them.
Keywords :
distributed programming; embedded systems; formal specification; invasive software; supervisory programs; Polaris; Taurus-1; abstract events; algebraic policy description language; context-aware security policies; malicious behaviour; mobile programs; monitored execution; networked appliances; secure execution scheme; specification scheme; Computer architecture; Computer security; Context-aware services; Home appliances; Information security; Mobile computing; Monitoring; Polarization; Public key; Runtime;
Conference_Titel :
Software Technologies for Future Embedded Systems, 2003. IEEE Workshop on
Print_ISBN :
0-7695-1937-7
DOI :
10.1109/WSTFES.2003.1201363
