Policy auditing over incomplete logs: Theory, implementation and applications

Proceedings of the ACM Conference on Computer and Communications Security

Volumn , Issue , 2011, Pages 151-162

  Garg, Deepak ^a   Jia, Limin ^a   Datta, Anupam ^a  

^a CARNEGIE MELLON UNIVERSITY   (United States)

Author keywords

Audit; Formal logic; Incomplete logs; Privacy policy

Indexed keywords

AUDIT; AUDIT LOGS; COMPLIANCE CHECKING; DATABASE INDEXING; FIRST ORDER LOGIC; INCOMPLETE LOGS; INFINITE DOMAINS; PERSONAL INFORMATION; PRIVACY AND SECURITY; PRIVACY POLICY; PRIVACY RULE; SPACE COMPLEXITY; SYNTACTIC STRUCTURE;

ALGORITHMS; DATA PRIVACY; FORMAL LOGIC; LOGIC PROGRAMMING;

COMPUTER PRIVACY;

EID: 80755168369     PISSN: 15437221     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2046707.2046726     Document Type: Conference Paper

References (34)

1. R. Alur and T. A. Henzinger. A really temporal logic. Journal of the ACM, 41(1):181-203, 1994.
2. K. R. Apt and E. Marchiori. Reasoning about Prolog programs: From modes through types to assertions. Formal Aspects of Computing, 6(6):743-765, 1994.
3. F. Baader, A. Bauer, and M. Lippmann. Runtime verification using a temporal description logic. In Proceedings of the 7th International Conference on Frontiers of Combining Systems (FroCos), pages 149-164, 2009.
4. M. Backes, B. Pfitzmann, and M. Schunter. A toolkit for managing enterprise privacy policies. In Proceedings of the 8th European Symposium on Research in Computer Security (ESORICS), LNCS 2808, pages 101-119, 2003.
5. H. Barringer, A. Goldberg, K. Havelund, and K. Sen. Rule-based runtime verification. In Proceedings of the 5th International Conference on Verification, Model Checking, and Abstract Interpretation (VMCAI), pages 44-57, 2004. (Pubitemid 38131366)
6. A. Barth, A. Datta, J. C. Mitchell, and H. Nissenbaum. Privacy and contextual integrity: Framework and applications. In Proceedings of the 27th IEEE Symposium on Security and Privacy (Oakland), pages 184-198, 2006. (Pubitemid 44753722)
7. A. Barth, J. C. Mitchell, A. Datta, and S. Sundaram. Privacy and utility in business processes. In Proceedings of the 20th IEEE Computer Security Foundations Symposium (CSF), pages 279-294, 2007.
8. D. Basin, F. Klaedtke, and S. Müller. Monitoring security policies with metric first-order temporal logic. In Proceeding of the 15th ACM Symposium on Access Control Models and Technologies (SACMAT), pages 23-34, 2010.
9. D. A. Basin, F. Klaedtke, and S. Müller. Policy monitoring in first-order temporal logic. In Proceedings of the 22nd International Conference on Computer Aided Verification (CAV), pages 1-18, 2010.
10. C. Bettini, S. Jajodia, X. S. Wang, and D. Wijesekera. Provisions and obligations in policy rule management. Journal of Network and Systems Management, 11:351-372, 2003.
11. G. Bruns and P. Godefroid. Generalized model checking: Reasoning about partial state spaces. In Proceedings of the 11th International Conference on Concurrency Theory (CONCUR), pages 168-182, 2000.
12. J. G. Cederquist, R. Corin, M. A. C. Dekker, S. Etalle, J. I. den Hartog, and G. Lenzini. Audit-based compliance control. International Journal of Information Security, 6(2):133-151, 2007. (Pubitemid 46487967)
13. Deloitte & Touche and the Ponemon Institute. Enterprise@Risk: 2007 Privacy and Data Protection Survey. White Paper, December 2007.
14. Department of Health and Human Services, Office of the Secretary. HIPAA Privacy Rule accounting of disclosures under the health information technology for economic and clinical health act. 45 CFR 164, 2011. Available at http://www.gpo.gov/fdsys/pkg/FR-2011-05-31/pdf/2011-13297.pdf.
15. H. DeYoung, D. Garg, L. Jia, D. Kaynar, and A. Datta. Experiences in the logical specification of the HIPAA and GLBA privacy laws. In Proceedings of the 9th Annual ACM Workshop on Privacy in the Electronic Society (WPES), 2010. Full version: Carnegie Mellon University Technical Report CMU-CyLab-10-007.
16. D. J. Dougherty, K. Fisler, and S. Krishnamurthi. Obligations and their interaction with programs. In Proceedings of the 12th European Symposium on Research in Computer Security (ESORICS), pages 375-389, 2007.
17. D. Garg, L. Jia, and A. Datta. A logical method for policy enforcement over evolving audit logs. Technical Report CMU-CyLab-11-002, Carnegie Mellon University, 2011.
18. C. Giblin, A. Y. Liu, S. Müller, B. Pfitzmann, and X. Zhou. Regulations expressed as logical models (REALM). In Proceeding of the 18th Annual Conference on Legal Knowledge and Information Systems (JURIX), pages 37-48, 2005.
19. P. Godefroid and M. Huth. Model checking vs. generalized model checking: Semantic minimizations for temporal logics. In Proceedings of the 20th Annual IEEE Symposium on Logic in Computer Science (LICS), pages 158-167, 2005. (Pubitemid 41462563)
20. M. Hilty, D. A. Basin, and A. Pretschner. On obligations. In Proceedings of the 10th European Symposium on Research in Computer Security (ESORICS), pages 98-117, 2005.
21. K. Irwin, T. Yu, and W. H. Winsborough. On the modeling and analysis of obligations. In Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS), pages 134-143, 2006. (Pubitemid 47131363)
22. P. E. Lam, J. C. Mitchell, and S. Sundaram. A formalization of HIPAA for a medical messaging system. In Proceedings of the 6th International Conference on Trust, Privacy and Security in Digital Business (TrustBus), pages 73-85, 2009.
23. Y. Liu, S. Müller, and K. Xu. A static compliance-checking framework for business process models. IBM Systems Journal, 46:335-361, 2007. (Pubitemid 46915268)
24. Z. Manna and A. Pnueli. Temporal Verification of Reactive Systems: Safety. Springer-Verlag, 1995.
25. M. J. May, C. A. Gunter, and I. Lee. Privacy APIs: Access control techniques to analyze and verify legal privacy policies. In Proceedings of the 19th IEEE Workshop on Computer Security Foundations (CSFW), pages 85-97, 2006. (Pubitemid 46499719)
26. Q. Ni, E. Bertino, and J. Lobo. An obligation model bridging access control policies and privacy policies. In Proceedings of the 13th ACM Symposium on Access Control Models and Technologies (SACMAT), pages 133-142, 2008.
27. OASIS XACML Committee. Extensible access control markup language (XACML) v2.0, 2004. Available at http://www.oasis-open.org/specs/#xacmlv2.0.
28. J. Park and R. Sandhu. Towards usage control models: beyond traditional access control. In Proceedings of the 7th ACM Symposium on Access Control Models and Technologies (SACMAT), pages 57-64, 2002.
29. G. Roşu and K. Havelund. Rewriting-based techniques for runtime verification. Automated Software Engineering, 12:151-197, 2005. (Pubitemid 40537733)
30. M. Roger and J. Goubault-Larrecq. Log auditing through model-checking. In Proceedings of the 14th IEEE Workshop on Computer Security Foundations (CSF), pages 220-236, 2001.
31. O. Sokolsky, U. Sammapun, I. Lee, and J. Kim. Run-time checking of dynamic properties. Electronic Notes in Theoretical Computer Science, 144:91-108, 2006. (Pubitemid 43728184)
32. P. Thati and G. Roşu. Monitoring algorithms for metric temporal logic specifications. Electronic Notes in Theoretical Computer Science, 113:145-162, 2005. (Pubitemid 40073310)
33. US Congress. Gramm-Leach-Bliley Act, Financial Privacy Rule. 15 USC §6801-§6809, November 1999. Available at http://www.law.cornell.edu/ uscode/usc-sup-01-15-10-94-20-I.html.
34. US Congress. Health Insurance Portability and Accountability Act of 1996, Privacy Rule. 45 CFR 164, 2002. Available at http://www.access.gpo.gov/nara/ cfr/waisidx-07/45cfr164-07.html.