English
 
Help Privacy Policy Disclaimer
  Advanced SearchBrowse

Item

ITEM ACTIONSEXPORT
Add to Basket
 Local TagsRelease HistoryDetailsSummary
  PolSim: Automatic Policy Validation via Meta-Data Flow Simulation

Alzayat, M. (2016). PolSim: Automatic Policy Validation via Meta-Data Flow Simulation. Master Thesis, Universität des Saarlandes, Saarbrücken.

Item is

 

show all hide all

Basic

show hide
Item Permalink: https://hdl.handle.net/11858/00-001M-0000-002C-ACCC-8 Version Permalink: https://hdl.handle.net/11858/00-001M-0000-002C-ACD0-B
Genre: Thesis
Latex : Pol{S}im: Automatic Policy Validation via Meta-Data Flow Simulation

Files

show Files
hide Files
:
2016_Mohamed Alzayat_MSc Thesis.pdf (Any fulltext), 6MB
 
File Permalink:
-
Name:
2016_Mohamed Alzayat_MSc Thesis.pdf
Description:
-
OA-Status:
Visibility:
Restricted (Max Planck Institute for Informatics, MSIN; )
MIME-Type / Checksum:
application/pdf
Technical Metadata:
Copyright Date:
-
Copyright Info:
-
License:
-

Locators

show

Creators

show
hide
 Creators:
Alzayat, Mohamed1, Author           
Druschel, Peter2, Advisor           
Garg, Deepak3, Referee           
Affiliations:
1International Max Planck Research School, MPI for Informatics, Max Planck Society, ou_1116551              
2Group P. Druschel, Max Planck Institute for Software Systems, Max Planck Society, ou_2105287              
3Group D. Garg, Max Planck Institute for Software Systems, Max Planck Society, ou_2105289              

Content

show
hide
Free keywords: -
 Abstract: Every year millions of confidential data records are leaked accidentally due to bugs, misconfiguration, or operator error. These incidents are common in large, complex, and fast evolving data processing systems. Ensuring compliance with data policies is a major challenge. Thoth is an information flow control system that uses coarse-grained taint tracking to control the flow of data. This is achieved by enforcing relevant declarative policies at processes boundaries. This enforcement is applicable regardless of bugs, misconfiguration, and compromises in application code, or actions by unprivileged operators. Designing policies that make sure all and only compliant flows are allowed remains a complex and error-prone process. In this work, we introduce PolSim, a simulation tool that aids system policy designers by validating the provided policies and systematically ensuring that the system allows all and only expected flows. Our proposed simulator approximates the dynamic run-time environment, semi-automatically suggests internal flow policies based on data flow, and provides debugging hints to help policy designers develop a working policy for the intended system before deployment.

Details

show
hide
Language(s): eng - English
 Dates: 20162016-09-272016-09-27
 Publication Status: Issued
 Pages: 71 p.
 Publishing info: Saarbrücken : Universität des Saarlandes
 Table of Contents: -
 Rev. Type: -
 Identifiers: BibTex Citekey: Alzayatmaster2016
 Degree: Master

Event

show

Legal Case

show

Project information

show

Source

show