CSC News
Xie Receives Research Supplement
Dr. Tao Xie, assistant professor of computer science, has been awarded supplemental funding in the amount of $33,275 by the National Science Foundation (NSF) to support his research proposal titled “Collaborative Research: New Approach to Testing and Verification of Security Policies.”
This supplement increases the overall funding for the project to $219,275.
Abstract - To formally and precisely capture the security properties that access control should adhere to, security models are usually written, bridging the rather wide gap in abstraction between policy and mechanism. To facilitate managing and maintaining access control, access control policies are increasingly implemented in specification languages or mechanisms. However, there exist no techniques for expressing or embedding access control models in a policies implementation. In addition, even after these models are expressed, there exist no techniques for verifying whether the models are correctly expressed in the policies including whether the properties of the models are satisfied in the policies. Ensuring the conformance of access control models and policies is a non-trivial and critical task. This project develops theoretical foundations for the test methodology of conformance checking, develops access control policies from popular access control models by specific implementations, and implements conformance test functions for the test methodology.
For more information about Dr. Xie, click here.
This supplement increases the overall funding for the project to $219,275.
Abstract - To formally and precisely capture the security properties that access control should adhere to, security models are usually written, bridging the rather wide gap in abstraction between policy and mechanism. To facilitate managing and maintaining access control, access control policies are increasingly implemented in specification languages or mechanisms. However, there exist no techniques for expressing or embedding access control models in a policies implementation. In addition, even after these models are expressed, there exist no techniques for verifying whether the models are correctly expressed in the policies including whether the properties of the models are satisfied in the policies. Ensuring the conformance of access control models and policies is a non-trivial and critical task. This project develops theoretical foundations for the test methodology of conformance checking, develops access control policies from popular access control models by specific implementations, and implements conformance test functions for the test methodology.
For more information about Dr. Xie, click here.
Return To News Homepage