The Case for Abstracting Security Policies
As Internet connectivity grows executing untrusted code becomes an increasingly serious threat. Public Key Infrastructure (PKI) and digital signatures offer some degree of protection, but are only part of a solution. In this paper the authors propose a mechanism of forcing applications to "Declare what they intend to do" by means of an abstract behavioural model. A monitoring process is employed to dynamically ensure that programs do not deviate from their pre-declared intention. They focus particularly on the usability, transparency and maintainability of the system, which they believe to have been lacking in similar efforts.