Avancerad sökning
Visar resultat 1 - 5 av 23 avhandlingar som matchar ovanstående sökkriterier.
1. Dynamic enforcement of decentralized security policies
Sammanfattning : This thesis explores defining security policies in a decentralized setting and dynamic methods of enforcing such policies. In a decentralized setting, principals are free to trust or distrust other principals. The key challenge is to provide possibilities for expressing and enforcing expressive decentralized policies. LÄS MER
2. Lightweight Enforcement of Fine-Grained Security Policies for Untrusted Software
Sammanfattning : This thesis presents an innovative approach to implementing a security enforcement mechanism in the contexts of untrusted software systems, where a piece of code in a base system may come from an untrusted third party. The key point of the approach is that it is lightweight in the sense that it does not need an additional policy language or extra tool. LÄS MER
3. Content Security for Web Applications
Sammanfattning : This thesis puts the focus on security problems related to web applications and web browsers by analyzing real-world web applications and modern client-side security mechanisms. For the latter, we mostly look at practical issues related to Content Security Policy (CSP) enforcement in web browsers. LÄS MER
4. Information Erasure: An Information-Flow Approach to Semantics and Enforcement
Sammanfattning : Many modern online services require sensitive data to complete their tasks. For this reason, guaranteeing security policies in such services is a major concern. The traditional (and well studied) aspects of security, namely confidentiality, integrity, and availability of data, capture many but not all desirable policies involving sensitive-data. LÄS MER
5. Protecting Information under Dynamic Policies: Specification, Conditions and Enforcement
Sammanfattning : Information-flow control enforces security policies on the information handled by computer applications. These policies often contain dynamic aspects, specifying how the confidentiality and integrity of information changes over time. This thesis focuses on the enforcement of such dynamic policies. The contributions are divided into three parts. LÄS MER