Run-Time Enforcement of Nonsafety Policies

Date Added: May 2010
Format: PDF

A common mechanism for ensuring that software behaves securely is to monitor programs at run time and check that they dynamically adhere to constraints specified by a security policy. Whenever a program monitor detects that untrusted software is attempting to execute a dangerous action, it takes remedial steps to ensure that only safe code actually gets executed. This paper improves the understanding of the space of policies enforceable by monitoring the run-time behaviors of programs.