Abstract
Distributed usage control is concerned with controlling how data may or may not be used after it has been given away. One strategy for enforcing usage control requirements is based on monitoring data usage and reacting to policy violations by imposing penalties. We show how to implement monitors for usage control requirements using runtime verification technology.
Please use the following format when citing this chapter: Hilty, M., Pretschner, A., Basin, D., Schaefer, C., and Walter, T., 2007, in IFIP International Federation for Information Processing, Volume 238, Trust Management, eds. Etalle, S., Marsh, S., (Eioston: Springer), pp. 411–414.
Chapter PDF
Similar content being viewed by others
Keywords
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
References
C. Bettini, S. Jajodia, X. S. Wang, and D. Wijesekera. Provisions and obligations in policy rule management. Journal of Network and System Management, 11(3):351–372, 2003.
S. Colin and L. Mariani. Model-Based Testing of Reactive Systems, chapter 18: Run-Time Verification, pages 525–555. LNCS 3472. 2005.
N. Delgado, A. Q. Gates, and S. Roach. A taxonomy and catalog of runtime software-fault monitoring tools. IEEE Transactions on Software Engineering, 30(12):859–872, 2004.
M. Geilen and D. Dams. An on-the-fly tableau construction for a real-time temporal logic. In Proc. 6th International Symposium on Formal Techniques in Real-Time and Fault-Tolerant Systems, LNCS 1926, pages 276–290, 2000.
M. Hilty, D. Basin, and A. Pretschner. On obligations. In 10th European Symposium on Research in Computer Security, LNCS 3679, pages 98–117, 2005.
M. Hilty, A. Pretschner, C. Schaefer, and T. Walter. A system model and an obligation lanugage for distributed usage control. Technical Report I-ST-20, DoCoMo Euro-Labs, 2006.
O. Kupferman and M. Y. Vardi. Model checking of safety properties. Formal Methods in System Design, 19:291–314, 2001.
J. Park and R. Sandhu. The UCON ABC Usage Control Model. ACM Transactions on Information and Systems Security, 7:128–174, 2004.
A. Pretschner, M. Hilty, and D. Basin. Distributed Usage Control. Communications of the ACM, September 2006.
G. Roşu and K. Havelund. Rewriting-based techniques for runtime verification. Automated Software Engineering, 12:151–197, 2005.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2007 International Federation for Information Processing
About this paper
Cite this paper
Hilty, M., Pretschner, A., Basin, D., Schaefer, C., Walter, T. (2007). Monitors for Usage Control. In: Etalle, S., Marsh, S. (eds) Trust Management. IFIPTM 2007. IFIP International Federation for Information Processing, vol 238. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-73655-6_29
Download citation
DOI: https://doi.org/10.1007/978-0-387-73655-6_29
Publisher Name: Springer, Boston, MA
Print ISBN: 978-0-387-73654-9
Online ISBN: 978-0-387-73655-6
eBook Packages: Computer ScienceComputer Science (R0)