The Unified Policy Framework (UPF)
نویسندگان
چکیده
We present the Unified Policy Framework (UPF), a generic framework for modelling security (access-control) policies; in Isabelle/HOL. UPF emphasizes the view that a policy is a policy decision function that grants or denies access to resources, permissions, etc. In other words, instead of modelling the relations of permitted or prohibited requests directly, we model the concrete function that implements the policy decision point in a system, seen as an “aspect” of “wrapper” around the business logic of a system. In more detail, UPF is based on the following four principles: 1. Functional representation of policies, 2. No conflicts are possible, 3. Three-valued decision type (allow, deny, undefined), 4. Output type not containing the decision only.
منابع مشابه
Formal Network Models and Their Application to Firewall Policies
We present a formal model of network protocols and their application to modeling firewall policies. The formalization is based on the Unified Policy Framework (UPF). The formalization was originally developed with for generating test cases for testing the security configuration actual firewall and router (middle-boxes) using HOL-TestGen. Our work focuses on modeling application level protocols ...
متن کاملThe Future of Low Power Design is Here: IEEE P1801, aka, UPF 2.0
Industry adoption of Accellera’s Unified Power Format (UPF) has been broad and swift. And why shouldn’t it be? For the first time, UPF made it possible to specify the power design intent in combination with the HDL specification of the design for use throughout the design, verification and implementation flows. UPF’s portability and feature set opened the door for more efficient design of low p...
متن کاملهویت و تأثیر آن بر سیاست خارجیِ یمن در دوران پسا اتحاد 1990
After the 1990 unification in Yemen, the country’s officials made efforts to adopt a new turn of behaviors in various areas, especially their foreign policy, in accordance to the created changes to prove themselves to their peripheral and international environments. Based thereupon, they did their best to define a new identity for the unified Yemen and identify their foreign policy and behavior...
متن کاملBeyond UPF & CPF: Low-power design and verification
Two formats for specifying power intent are currently in wide use in the industry today and as designers continue to strive for more power efficient designs new issues arise that need new solutions to improve on today’s standards. This panel will discuss areas for improving today’s power formats and the direction that these formats need to move, in order to provide the most efficient flows for ...
متن کاملBetter Proposal Distributions: Object Tracking Using Unscented Particle Filter
Tracking objects involves the modeling of non-linear nonGaussian systems. On one hand, variants of Kalman filters are limited by their Gaussian assumptions. On the other hand, conventional particle filter, e.g., CONDENSATION, uses transition prior as the proposal distribution. The transition prior does not take into account current observation data, and many particles can therefore be wasted in...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- Archive of Formal Proofs
دوره 2014 شماره
صفحات -
تاریخ انتشار 2014