Least privilege and privilege deprivation

2005 ◽  
Author(s):  
Wensheng Zhang ◽  
Hui Song ◽  
Sencun Zhu ◽  
Guohong Cao
Keyword(s):  
Least Privilege

Extraction of an Architectural Model for Least Privilege Analysis

2012 ◽  
Vol 3 (4) ◽  
pp. 27-44
Author(s):  
Bernard Spitz ◽  
Riccardo Scandariato ◽  
Wouter Joosen
Keyword(s):  
Software Architecture ◽  
Building Block ◽  
Source Code ◽  
Software System ◽  
Task Execution ◽  
Design And Implementation ◽  
Prototype Tool ◽  
Least Privilege ◽  
Architectural Model ◽  
Execution Model

This paper presents the design and implementation of a prototype tool for the extraction of the so-called Task Execution Model directly from the source code of a software system. The Task Execution Model is an essential building block for the analysis of the least privilege violations in a software architecture (presented in previous work). However, the trustworthiness of the analysis results relies on the correspondence between the analyzed model and the implementation of the system. Therefore, the tool presented here is a key ingredient to provide assurance that the analysis results are significant for the system at hand.

Toward an Integrative Model of Application-Software Security

2003 ◽  
pp. 157-163
Author(s):  
Vijay V. Raghavan
Keyword(s):  
Software Security ◽  
Social Engineering ◽  
Systems Development ◽  
System Level ◽  
Integrative Model ◽  
Software Systems ◽  
Execution Monitoring ◽  
Systems Security ◽  
Least Privilege ◽  
Implementation Stages

Populist approaches to studying information systems security include architectural, infrastructure-related and system-level security. This study focuses on software security implemented and monitored during systems development and implementation stages. Moving away from the past checklist methods of studying software security, this study provides a model that could be used in categorizing checklists into meaningful clusters. Many constructs, such as principle of least privilege, execution monitoring, social engineering and formalism and pragmatism in security implementations, are identified in the model. The identification of useful constructs to study can form the basis of evaluating security in software systems as well as provide guidelines of implementing security in new systems developed.

Least Privilege

2011 ◽  
pp. 716-716
Author(s):  
Sabrina De Capitani diVimercati
Keyword(s):  
Least Privilege
Sign in / Sign up

Export Citation Format

Share Document