Luigi Logrippo SITE - PowerPoint PPT Presentation

About This Presentation
Title:

Luigi Logrippo SITE

Description:

Bell-LaPadula information protection system prevents individuals from accessing information at a higher ... study of new complex functionalities, mainly presence-based features ... – PowerPoint PPT presentation

Number of Views:37
Avg rating:3.0/5.0
Slides: 12
Provided by: luigilo
Category:
Tags: site | lead | logrippo | luigi

less

Transcript and Presenter's Notes

Title: Luigi Logrippo SITE


1
Luigi LogrippoSITE
  • Logic and implementation issues
  • in VoIP and security

luigi_at_site.uottawa.ca
2
Two main ideas
  • Many software flaws can be discovered by making
    the logic precise and thoroughly examining it by
    the use of logic tools
  • Feature interactions are the result of logic
    flaws
  • Application areas
  • Security
  • New VoIP and Web based systems
  • Many others

3
Feature Interaction in Automotive
  • Electronic Stability Program (ESP) and Cruise
    Control (CC)
  • ESP Break if wheels slip on wet road
  • CC Increase speed until cruise speed is reached
  • FI detectable by the fact that the two features
    have contradicting requirements

4
Feature interaction in security
  • Bell-LaPadula information protection system
    prevents individuals from accessing information
    at a higher clearance level than they have
  • By using delegation, individuals can confer their
    information access authority to other individuals

5
Research directions
  • Implementation of VoIP and Web-based services
    with complex functionalities
  • Development of logic-based methods to discover
    flaws in these functionalities

6
Already done
  • Implementation of two open-source SIP VoIP
    systems
  • Vocal, Asterix
  • Implementation study of new complex
    functionalities, mainly presence-based features

7
Forthcoming
  • Implementation of presence features in our SIP
    telephony systems
  • Study of security aspects related to these
    functionalities

8
Already done
  • In-depth study of the Feature Interaction problem
    in telecom systems (over 12 years of experience)
  • Feature Interactions can lead to security flaws

9
Forthcoming
  • Study of feature interactions in new complex VoIP
    functionalities
  • Such as presence

10
Already done
  • Study of access control methods
  • Firewalls
  • Access control languages such as XACML
  • Development of new access control paradigms
  • Process-based access control
  • Shown that logic flaws in the specifications of
    such systems can lead to security flaws

11
Forthcoming
  • Generalizing this research, by applying our
    method to other access control systems
  • Extension to business control languages such as
    BPEL and variations
  • Extensions to SLAs (Service-Level Agreements)
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Luigi Logrippo SITE" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!