Advanced Security Policy Engineering Framework for Critical Systems

Sponsors:

  • Sandia Labs
  • Description:
    As our national reliance upon information systems increases, more and more focus has been directed toward the security of those systems. One of the most challenging security problems facing us today is how to secure these critical systems. This project is focused on developing an advanced security policy engineering framework for protecting distributed, critical systems. The proposed framework is mainly concerned with the access control aspects of the security policy. It includes a formal approach to modeling an access control in distributed environments, which can be used to analyze flaws in authorization. Consequently, it results in an adversary model by detecting the flaws in distributed access control policies. In order to attain our goal, the proposed project includes three technical tasks:
    1. modeling of a distributed access control policy;
    2. analysis of access control policy constructs;
    3. development of access control policy management and enforcement.