Aragorn: Eliciting and Maintaining Secure Service Policies
| Title | Aragorn: Eliciting and Maintaining Secure Service Policies |
| Publication Type | Journal Article |
| Year of Publication | 2017 |
| Authors | Nirav Ajmeri, Chung-Wei Hang, Simon D. Parsons, Munindar P. Singh |
| Journal | IEEE Computer |
| Volume | 50 |
| Pagination | 1–8 |
| Keywords | Apr'17, Formal Specification and Analysis of Security-Critical Norms and Policies, NCSU, Policy-Governed Secure Collaboration, Understanding the Effects of Norms and Policies on the Robustness, Liveness, and Resilience of Systems |
| Abstract | Services today are configured through policies that capture expected behaviors. However, because of subtle and changing stakeholder requirements, producing and maintaining policies is nontrivial. Policy errors are surprisingly common and cause avoidable security vulnerabilities. We propose Aragorn, an approach that applies formal argumentation to produce policies that balance stakeholder concerns. We demonstrate empirically that, compared to the traditional approach for specifying policies, Aragorn performs (1) better on coverage, correctness, and quality; (2) equally well on learnability and effort/coverage and difficulty; and (3) slightly worse on time and effort needed. Thus, Aragorn demonstrates the potential for capturing policy rationales as arguments. |
| Notes | To appear |
| Citation Key | Computer-17:Aragorn |
- Apr'17
- Formal Specification and Analysis of Security-Critical Norms and Policies
- NCSU
- Policy-Governed Secure Collaboration
- Understanding the Effects of Norms and Policies on the Robustness, Liveness, and Resilience of Systems
- Policy-Governed Secure Collaboration
- NCSU
- Formal Specification and Analysis of Security-Critical Norms and Policies
- Apr'17