Policy Monitoring in First-Order Temporal Logic
نویسندگان
چکیده
We present an approach to monitoring system policies. As a specification language, we use an expressive fragment of a temporal logic, which can be effectively monitored. We report on case studies in security and compliance monitoring and use these to show the adequacy of our specification language for naturally expressing complex, realistic policies and the practical feasibility of monitoring these policies using our monitoring algorithm.
منابع مشابه
Active Monitoring using Real-time Metric Linear Temporal Logic Specifications
Monitoring temporal relationships among events in event streams has wide scale applicability in health information systems. From detecting violations of privacy policies in message sequences to diagnosing conditions in physiological data streams real-time event monitoring of temporal invariants is becoming an important tool for system design. We developed an Active Real-Time Event Monitoring an...
متن کاملMonitoring of Temporal First-Order Properties with Aggregations
In system monitoring, one is often interested in checking properties of aggregated data. Current policy monitoring approaches are limited in the kinds of aggregations they handle. To rectify this, we extend an expressive language, metric first-order temporal logic, with aggregation operators. Our extension is inspired by the aggregation operators common in database query languages like SQL. We ...
متن کاملA First-Order Policy Language for History-Based Transaction Monitoring
Online trading invariably involves dealings between strangers, so it is important for one party to be able to judge objectively the trustworthiness of the other. In such a setting, the decision to trust a user may sensibly be based on that user’s past behaviour. We introduce a specification language based on linear temporal logic for expressing a policy for categorising the behaviour patterns o...
متن کاملMONPOLY: Monitoring Usage-Control Policies
Determining whether the usage of sensitive, digitally stored data complies with regulations and policies is a growing concern for companies, administrations, and end users alike. Classical examples of policies used for protecting and preventing the misuse of data are history-based access-control policies like the Chinese-wall policy and separation-of-duty constraints. Other policies from more s...
متن کاملMonitoring Modulo Theories (STTT, 2015)
This paper considers a generic approach to runtime verification of temporal properties over firstorder theories. This allows especially for the verification of multi-threaded, object-oriented systems. It presents a general framework lifting monitor synthesis procedures for propositional temporal logics to a temporal logic over structures within some first-order theory. To evaluate such specific...
متن کامل