Monitors for Usage Control

  • M. Hilty
  • A. Pretschner
  • D. Basin
  • C. Schaefer
  • T. Walter
Part of the IFIP International Federation for Information Processing book series (IFIPAICT, volume 238)


Distributed usage control is concerned with controlling how data may or may not be used after it has been given away. One strategy for enforcing usage control requirements is based on monitoring data usage and reacting to policy violations by imposing penalties. We show how to implement monitors for usage control requirements using runtime verification technology.


Data Provider Usage Control Data Consumer Temporal Formula Exclusive Permission 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


  1. 1.
    C. Bettini, S. Jajodia, X. S. Wang, and D. Wijesekera. Provisions and obligations in policy rule management. Journal of Network and System Management, 11(3):351–372, 2003.CrossRefGoogle Scholar
  2. 2.
    S. Colin and L. Mariani. Model-Based Testing of Reactive Systems, chapter 18: Run-Time Verification, pages 525–555. LNCS 3472. 2005.Google Scholar
  3. 3.
    N. Delgado, A. Q. Gates, and S. Roach. A taxonomy and catalog of runtime software-fault monitoring tools. IEEE Transactions on Software Engineering, 30(12):859–872, 2004.CrossRefGoogle Scholar
  4. 4.
    M. Geilen and D. Dams. An on-the-fly tableau construction for a real-time temporal logic. In Proc. 6th International Symposium on Formal Techniques in Real-Time and Fault-Tolerant Systems, LNCS 1926, pages 276–290, 2000.Google Scholar
  5. 5.
    M. Hilty, D. Basin, and A. Pretschner. On obligations. In 10th European Symposium on Research in Computer Security, LNCS 3679, pages 98–117, 2005.Google Scholar
  6. 6.
    M. Hilty, A. Pretschner, C. Schaefer, and T. Walter. A system model and an obligation lanugage for distributed usage control. Technical Report I-ST-20, DoCoMo Euro-Labs, 2006.Google Scholar
  7. 7.
    O. Kupferman and M. Y. Vardi. Model checking of safety properties. Formal Methods in System Design, 19:291–314, 2001.MATHCrossRefGoogle Scholar
  8. 8.
    J. Park and R. Sandhu. The UCON ABC Usage Control Model. ACM Transactions on Information and Systems Security, 7:128–174, 2004.CrossRefGoogle Scholar
  9. 9.
    A. Pretschner, M. Hilty, and D. Basin. Distributed Usage Control. Communications of the ACM, September 2006.Google Scholar
  10. 10.
    G. Roşu and K. Havelund. Rewriting-based techniques for runtime verification. Automated Software Engineering, 12:151–197, 2005.CrossRefGoogle Scholar

Copyright information

© International Federation for Information Processing 2007

Authors and Affiliations

  • M. Hilty
    • 1
  • A. Pretschner
    • 1
  • D. Basin
    • 1
  • C. Schaefer
    • 2
  • T. Walter
    • 2
  1. 1.Dept. of Computer ScienceETH ZürichSwitzerland
  2. 2.DoCoMo Euro-LabsMunichGermany

Personalised recommendations