Warning: pg_query(): Query failed: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 in /dati/webiit-old/includes/database.pgsql.inc on line 138 Warning: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 query: SELECT data, created, headers, expire, serialized FROM cache_page WHERE cid = 'https://www-old.iit.cnr.it/node/24389' in /dati/webiit-old/includes/database.pgsql.inc on line 159 Warning: pg_query(): Query failed: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 in /dati/webiit-old/includes/database.pgsql.inc on line 138 Warning: ERROR: missing chunk number 0 for toast value 29512337 in pg_toast_2619 query: SELECT data, created, headers, expire, serialized FROM cache_page WHERE cid = 'https://www-old.iit.cnr.it/node/24389' in /dati/webiit-old/includes/database.pgsql.inc on line 159 Introducing probabilities in contract-based approaches for mobile application security | IIT - CNR - Istituto di Informatica e Telematica
IIT Home Page CNR Home Page

Introducing probabilities in contract-based approaches for mobile application security

Security for mobile devices is a problem of capital importance, especially due to new threats coming from malicious applications. Though several security solutions have already been proposed, security requirements have been always considered as binary: allow or deny. We argue that a more realistic vision of security can be given using probabilistic and quantitative requirements.
In this paper, we introduce a probabilistic description of the behavior of an application that a user is going to execute.We also allow the definition of finer grained user security requirements, by introducing probabilistic clause modifiers. Later, we present a probabilistic version of the Security-by-Contract and the Security by-Contract-with-Trust frameworks to guarantee probabilistic security requirements.


SETOP 2013, London, UK, 2013

Autori esterni: Dini Gianluca (Dipartimento di Ingegneria dell'Informazione, Università di Pisa)
Autori IIT:

Daniele Sgandurra

Foto di Daniele Sgandurra

Tipo: Articolo in Atti di convegno internazionale con referee
Area di disciplina: Information Technology and Communication Systems