Evidence-based audit

Proceedings - IEEE Computer Security Foundations Symposium

Volumn , Issue , 2008, Pages 177-191

  Vaughan, Jeffrey A ^a   Jia, Limin ^a   Mazurak, Karl ^a   Zdancewic, Steve ^a  

^a UNIVERSITY OF PENNSYLVANIA   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ACCESS CONTROL POLICIES; COMPUTER SECURITY; METATHEORETIC PROPERTIES;

COMPUTER NETWORKS; FOUNDATIONS;

ACCESS CONTROL;

EID: 51749116017     PISSN: 19401434     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CSF.2008.24     Document Type: Conference Paper

References (33)

1. Martín Abadi. Logic in access control. In Proceedings of the 18th Annual Symposium on Logic in Computer Science (LICS'03), pages 228-233, June 2003.
2. Martín Abadi. Access control in a core calculus of dependency. in ICFP '06: Proc. of the 11th International Conference on Functional Programming, pages 263-273, 2006.
3. Martín Abadi, Anindya Banerjee, Nevin Heintze, and Jon Riecke. A core calculus of dependency. In Proc. 26th ACM Symp. on Principles of Programming Languages (POPL), pages 147-160, San Antonio, TX, January 1999.
4. Martín Abadi, Michael Burrows, Butler W. Lampson, and Gordon D. Plotkin. A calculus for access control in distributed systems. Transactions on Programming Languages and Systems, 15(4):706-734, September 1993.
5. Andrew W. Appel and Edward W. Felten. Proof-carrying authentication. In CCS '99: Proceedings of the 6th ACM conference on Computer and communications security, pages 52-62, New York, NY, USA, 1999. ACM.
6. S. Axelsson, U. Lindqvist, U. Gustafson, and E. Jonsson. An approach to UNIX security logging. In Proc. 21st NIST-NCSC National Information Systems Security Conference, pages 62-75, 1998.
7. Lujo Bauer. Access Control for the Web via Proof-Carrying Authorization. PhD thesis, Princeton U., November 2003.
8. Lujo Bauer, Kevin D. Bowers, Frank Pfenning, and Michael K. Reiter. Consumable credentials in logic-based access control. Technical Report CMU-CYLAB-06-002, Carnegie Mellon University, February 2006.
9. Lujo Bauer, Scott Garriss, Jonathan M. McCune, Michael K. Reiter, Jason Rouse, and Peter Rutenbar. Device-enabled authorization in the Grey system. In Information Security: 8th International Conference, ISC 2005, pages 431-445, 2005.
10. Lujo Bauer, Scott Garriss, and Michael K. Reiter. Distributed proving in access-control systems. In Proc. of the 2005 IEEE Symposium on Security & Privacy, pages 81-95, May 2005.
11. Mihir Bellare and Bennet Yee. Forward integrity for secure audit logs. Technical report, Computer Science and Engineering Department, U. California at San Diego, 1997.
12. Matt Bishop. Computer Security: Art and Science. Addison-Wesley Professional, 2002.
13. Matt Blaze, Joan Feigenbaum, John Ioannidis, and Angelos D. Keromytis. The role of trust management in distributed systems security. In Secure Internet programming: security issues for mobile and distributed objects, pages 185-210. Springer-Verlag, London, UK, 1999.
14. J.G. Cederquist, R. Corin., M.A.C. Dekker, S. Etalle, and J.J. den Hartog. An audit logic for accountability. In The Proceedings of the 6th IEEE International Workshop on Policies for Distributed Systems and Networks, 2005.
15. Alonzo Church. A formulation of the simple theory of types. The Journal of Symbolic Logic, 5(2):56-68, June 1940.
16. Haskell B. Curry, Robert Feys, and William Craig. Combinatory Logic, volume 1. North-Holland, Amsterdam, 1958.
17. John DeTreville. Binder, a logic-based security language. In Proceedings of the 2002 IEEE Symposium on Security and Privacy, pages 105-113, May 2002.
18. Henry deYoung, Deepak Garg, and Frank Pfenning. An authorization logic with explicit time. In Proc. of the 21st IEEE Computer Security Foundations Symposium, 2008.
19. Cédric Fournet, Andrew D. Gordon, and Sergio Maffeis. A type discipline for authorization policies. In Proc. of the 14th European Symposium on Programming, 2005.
20. Cédric Fournet, Andrew D. Gordon, and Sergio Maffeis. A type discipline for authorization in distributed systems. In Proc. of the 20th IEEE Computer Security Foundations Symposium, 2007.
21. Deepak Garg and Frank Pfenning. Non-interference in constructive authorization logic. In Proc. of the 19th IEEE Computer Security Foundations Workshop, pages 283-296, 2006.
22. Herman Geuvers. A short and flexible proof of strong normalization for the calculus of constructions. In TYPES '94: Selected papers from the International Workshop on Types for Proofs and Programs, pages 14-38, London, 1995.
23. M. A. Harrison, W. L Ruzzo, and J. D. Ullman. Protection in operating systems. Comm. ACM, 19(8):461-471, 1976.
24. Sushil Jajodia, Pierangela Samarati, and V. S. Subrahmanian. A logical language for expressing authorizations. In SP '97: Proceedings of the 1997 IEEE Symposium on Security and Privacy, page 31. IEEE Computer Society, 1997.
25. Limin Jia, Jeffrey A. Vaughan, Karl Mazurak, Jianzhou Zhao, Luke Zarko, Joseph Schorr, and Steve Zdancewic. Aura: A programming language for authorization and audit, preliminary technical results. Technical Report MS-CIS-08-10, U. Pennsylvania, 2008.
26. C. Ko, M. Ruschitzka, and K. Levitt. Execution monitoring of security-critical programs in distributed systems: a specification-based approach. In SP '97: Proceedings of the 1997 IEEE Symposium on Security and Privacy, page 175, Washington, DC, USA, 1997. IEEE Computer Society.
27. Ninghui Li, Benjamin N. Grosof, and Joan Feigenbaum. Delegation logic: A logic-based approach to distributed authorization. ACM Trans. Inf. Syst. Secur., 6(1), 2003.
28. G. C. Necula and P. Lee. Efficient representation and validation of proofs. In LICS '98: Proceedings of the 13th Annual IEEE Symposium on Logic in Computer Science, page 93, Washington, DC, USA, 1998. IEEE Computer Society.
29. Bruce Schneier and John Kelsey. Cryptographic support for secure logs on untrusted machines. In Proc. of the 7th on USENIX Security Symposium., pages 53-62, January 1998.
30. Helmut Schwichtenberg. Normalization. Lecture Notes for Marktoberdorf Summer School, 1989.
31. Jeffrey C. Vaughan, Limin Jia, Karl Mazurak, and Steve Zdancewic. Evidence-based audit, technical appendix. Technical Report MS-CIS-08-09, U. Pennsylvania, 2008.
32. B. Waters, D. Balfanz, G. E. Durfee, and D. K. Smetters. Building an encrypted and searchable audit log. In 11th Annual Network and Distributed Security Symposium, 2004.
33. Christopher Wee. LAFS: A logging and auditing file system. In Annual Computer Security Applications Conference, pages 231-240, New Orleans, LA, USA, December 1995.