Modeling and Analysis of access-control policies (SELinux and/or SMACK)

Access-control policy management is an increasingly hard problem from both the security point of view (is the policy “safe”?) and the functionality point of view (does the system still work as expected?). Even when a policy is considered both safe and functional, each addition, deletion or modification of the policy has the potential to break the baseline. Using existing tools and mechanisms to model and analyze policies to answer specific safety and functionality questions would be very useful to organizations using access-control policies. Identifying and highlighting current gaps in existing tools and technologies for policy analysis, could potentially lead to improvements and/or new tools and technologies.

Faculty Supervisor:

Amy Felty


Amir Eaman


Irdeto Canada


Engineering - computer / electrical


Information and communications technologies


University of Ottawa



Current openings

Find the perfect opportunity to put your academic skills and knowledge into practice!

Find Projects