loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Author: Marius Schlegel

Affiliation: TU Ilmenau, Germany

Keyword(s): Application Security, Security Architecture, Security-Policy-Controlled Applications, Application-specific Security Policies, Application-level Policy Enforcement, Trusted Execution, Intel SGX.

Abstract: While there have been approaches for integrating security policies into operating systems (OSs) for more than two decades, applications often use objects of higher abstraction requiring individual security policies with application-specific semantics. Due to insufficient OS support, current approaches for enforcing application-level policies typically lead to large and complex trusted computing bases rendering tamperproofness and correctness difficult to achieve. To mitigate this problem, we propose the application-level policy enforcement architecture APPSPEAR and a C++ framework for its implementation. The configurable framework enables developers to balance enforcement rigor and costs imposed by different implementation alternatives and to easily tailor an APPSPEAR implementation to individual application requirements. We argue that hardware-based trusted execution environments offer an optimal balance between effectiveness and efficiency of policy protection and enforcement. This claim is substantiated by a practical evaluation based on a medical record system. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 52.23.203.254

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Schlegel, M. (2021). Trusted Enforcement of Application-specific Security Policies. In Proceedings of the 18th International Conference on Security and Cryptography - SECRYPT; ISBN 978-989-758-524-1; ISSN 2184-7711, SciTePress, pages 343-355. DOI: 10.5220/0010579703430355

@conference{secrypt21,
author={Marius Schlegel.},
title={Trusted Enforcement of Application-specific Security Policies},
booktitle={Proceedings of the 18th International Conference on Security and Cryptography - SECRYPT},
year={2021},
pages={343-355},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010579703430355},
isbn={978-989-758-524-1},
issn={2184-7711},
}

TY - CONF

JO - Proceedings of the 18th International Conference on Security and Cryptography - SECRYPT
TI - Trusted Enforcement of Application-specific Security Policies
SN - 978-989-758-524-1
IS - 2184-7711
AU - Schlegel, M.
PY - 2021
SP - 343
EP - 355
DO - 10.5220/0010579703430355
PB - SciTePress