Modeling and Analysis of access-control policies (SELinux and/or SMACK)

Access-control policy management is an increasingly hard problem from both the security point of view (is the policy “safe”?) and the functionality point of view (does the system still work as expected?). Even when a policy is considered both safe and functional, each addition, deletion or modification of the policy has the potential to break the baseline. Using existing tools and mechanisms to model and analyze policies to answer specific safety and functionality questions would be very useful to organizations using access-control policies. Identifying and highlighting current gaps in existing tools and technologies for policy analysis, could potentially lead to improvements and/or new tools and technologies.

Faculty Supervisor:

Amy Felty

Student:

Amir Eaman

Partner:

Irdeto Canada

Discipline:

Engineering - computer / electrical

Sector:

Information and communications technologies

University:

University of Ottawa

Program:

Accelerate

Current openings

Find the perfect opportunity to put your academic skills and knowledge into practice!

Find Projects