[cap-talk] Announcing "Analysing Object-Capability Security" Paper and Authodox v. 0.2.0
Toby Murray
toby.murray at comlab.ox.ac.uk
Fri May 30 11:11:21 CDT 2008
On Fri, 2008-05-30 at 16:53 +0100, Toby Murray wrote:
> My own take on the development of formal models for reasoning about
> capability-based systems is something like this:
>
Shame I sent it without remembering to include the references...
[1] R. J. Lipton and L. Snyder, A Linear Time Algorithm for Deciding
Subject Security, Journal of the ACM, volume 24, number 3, 1977.
[2] Dhammika Elkaduwe, Gerwin Klein and Kevin Elphinstone, Verified
protection model of the seL4 microkernel, Submitted for publication,
2007.
[3] Jonathan S. Shapiro and Sam Weber, Verifying the {EROS} Confinement
Mechanism, in SP '00: Proceedings of the 2000 IEEE Symposium on Security
and Privacy, 2000.
[4] Mark S. Miller and Jonathan S. Shapiro, Paradigm Regained:
Abstraction Mechanisms for Access Control, in Proceedings of the 8th
Asian Computing Science Conference (ASIAN03), 2003.
[5] Fred Spiessens and Peter Van Roy, A Practical Formal Model for
Safety Analysis in Capability-Based Systems, in LNCS 3705, Revised
Selected Papers of the International Symposium on Trustworthy Global
Computing, 2005.
More information about the cap-talk
mailing list