Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

What is the shape of your security policy? Security as a classification problem

: Türpe, S.

Preprint urn:nbn:de:0011-n-1193237 (362 KByte PDF)
MD5 Fingerprint: a09522734bfdc99747bddbf368e033ab
Copyright Association for Computing Machinery (ACM)
Created on: 6.3.2010

Ford, R. ; Association for Computing Machinery -ACM-:
New Security Paradigms Workshop 2009. Proceedings : September 8-11, 2009, Oxford, United Kingdom
New York: ACM, 2009
ISBN: 978-1-60558-845-2
New Security Paradigms Workshop <2009, Oxford>
Conference Paper, Electronic Publication
Fraunhofer SIT ()
security; theory; security policy; security analysis; classifier system; high-dimensional space; secure composition; defense in depth; threat model; causality

This new paradigm defines security policies on cause-effect relations and models security mechanisms in analogy with pattern recognition classifiers. It augments the arsenal of formal computer security evaluation tools with new techniques. A causality model represents possible causes and effects; the causes include threats and the effects may be undesired. Target security policies derived from functional specifications select permitted causalities. Security mechanisms extract features from causes and effects and enforce mechanism-specific policies, approximating the target policy. Advantages of the classifier paradigm are the ability to generalize from incomplete information and examples, to measure classification error and mechanism performance, and to analyze mechanism ensembles and comp ositions. The classifier paradigm also offers a conception of problem complexity and suggests paying more attention to the impact of mechanisms rather than to their inner workings.