@inproceedings{74e734a6a81049418c1b6d9273cc512b,
title = "A model-based approach to integrating security policies for embedded devices",
abstract = "Embedded devices like smartcards can now run multiple interacting applications. A particular challenge in this domain is to dynamically integrate diverse security policies. In this paper we show how a framework based on a concise formal model lets us securely customize a payment card equipped with a programmable chip. We present policy automata, a formal model of computations that grant or deny access to a resource. This model combines defeasible logic with state machines, representing complex policies as combinations of simpler modular policies. We use the model in a framework for specifying, merging and analyzing modular policies. This framework is implemented as Polaris, a tool which analyzes policy automata to reveal potential conflicts or redundancies, and compiles automata into Java Card applets.",
keywords = "Java Cards, Model Based Design, Policy Integration, Smartcards",
author = "Michael McDougall and Rajeev Alur and Gunter, {Carl A.}",
year = "2004",
doi = "10.1145/1017753.1017789",
language = "English (US)",
isbn = "1581138601",
series = "EMSOFT 2004 - Fourth ACM International Conference on Embedded Software",
publisher = "Association for Computing Machinery",
pages = "211--219",
booktitle = "EMSOFT 2004 - Fourth ACM International Conference on Embedded Software",
address = "United States",
note = "EMSOFT 2004 - Fourth ACM International Conference on Embedded Software ; Conference date: 27-09-2004 Through 29-09-2004",
}