Verifying Policy Enforcers

Abstract : Policy enforcers are sophisticated runtime components that can prevent failures by enforcing the correct behavior of the software. While a single enforcer can be easily designed focusing only on the behavior of the application that must be monitored, the effect of multiple enforcers that enforce different policies might be hard to predict. So far, mechanisms to resolve interferences between enforcers have been based on priority mechanisms and heuristics. Although these methods provide a mechanism to take decisions when multiple enforcers try to affect the execution at a same time, they do not guarantee the lack of interference on the global behavior of the system. In this paper we present a verification strategy that can be exploited to discover interferences between sets of enforcers and thus safely identify a-priori the enforcers that can co-exist at run-time. In our evaluation, we experimented our verification method with several policy enforcers for Android and discovered some incompatibilities.
Type de document :
Communication dans un congrès
RV 2017 - 17th International Conference on Runtime Verification, Sep 2017, Seattle, United States
Liste complète des métadonnées

Littérature citée [33 références]  Voir  Masquer  Télécharger
Contributeur : Yliès Falcone <>
Soumis le : samedi 2 décembre 2017 - 11:59:17
Dernière modification le : jeudi 7 février 2019 - 16:31:33
Document(s) archivé(s) le : samedi 3 mars 2018 - 12:36:21


Fichiers produits par l'(les) auteur(s)


  • HAL Id : hal-01653894, version 1


Oliviero Riganelli, Daniela Micucci, Leonardo Mariani, Yliès Falcone. Verifying Policy Enforcers. RV 2017 - 17th International Conference on Runtime Verification, Sep 2017, Seattle, United States. 〈hal-01653894〉



Consultations de la notice


Téléchargements de fichiers