A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2007; you can also visit the original URL.
The file type is application/pdf
.
Pastures: Towards Usable Security Policy Engineering
2007
The Second International Conference on Availability, Reliability and Security (ARES'07)
Whether a particular computing installation meets its security goals depends on whether the administrators can create a policy that expresses these goals-security in practice requires effective policy engineering. We have found that the reigning SELinux model fares poorly in this regard, partly because typical isolation goals are not directly stated but instead are properties derivable from the type definitions by complicated analysis tools. Instead, we are experimenting with a security-policy
doi:10.1109/ares.2007.114
dblp:conf/IEEEares/BratusFMS07
fatcat:qrk6xdxffzhzdhzrm3iuboz6um