Analysing the Efficacy of Security Policies in Cyber-Physical Socio-Technical Systems

Lenzini, Gabriele; Mauw, Sjouke; Ouchani, Samir

Reference : Analysing the Efficacy of Security Policies in Cyber-Physical Socio-Technical Systems


	Document type :	Scientific congresses, symposiums and conference proceedings : Paper published in a book
	Discipline(s) :	Engineering, computing & technology : Computer science
	Focus Areas :	Computational Sciences
	To cite this reference:	http://hdl.handle.net/10993/28328

Title :	Analysing the Efficacy of Security Policies in Cyber-Physical Socio-Technical Systems
Language :	English
Author, co-author :	Lenzini, Gabriele [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
	Mauw, Sjouke [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
	Ouchani, Samir [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Publication date :	2016
Main document title :	Security and Trust Management - STM 2016
Editor :	Barthe, Gilles
	Markatos, Evangelos
Publisher :	Springer-Verlag
Peer reviewed :	Yes
On invitation :	No
Audience :	International
Event name :	12th International Workshop on Security and Trust Management
Event date :	from 26-09-2016 to 27-09-2016
Event place (city) :	Heraklion
Event country :	Greece
Keywords :	[en] Socio-Technical Physical Systems ; Modelling Security and Policies
Abstract :	[en] A crucial question for an ICT organization wishing to improve its security is whether a security policy together with physical access controls protects from socio-technical threats. We study this question formally. We model the information flow defined by what the organization's employees do (copy, move, and destroy information) and propose an algorithm that enforces a policy on the model, before checking against an adversary if a security requirement holds.
Target :	Researchers
Permalink :	http://hdl.handle.net/10993/28328
Framework Programme / European Project :	FP7 ; 318003 - TRESPASS - Technology-supported Risk Estimation by Predictive Assessment of Socio-technical Security
FnR project :	FnR ; FNR1183245 > Gabriele LENZINI > STAST > Socio-Technical Analysis of Security and Trust > 01/05/2012 > 30/04/2015 > 2011

File(s) associated to this reference

Fulltext file(s):

	File	Commentary	Version	Size	Access
Limited access	main.pdf		Author preprint	106.56 kB	Request a copy

All documents in ORBi^lu are protected by a user license.

University of Luxembourg Library | Feedback | Legal notices