Our paper was submitted and accepted to the 7th International Workshop on Software Engineering for Secure Systems (SESS’11), part of ICSE’11, as a full paper. It involved a formal methods approach to system compliance verification using context unity with extensions to the standard formal semantics. Specifically we explore how a system can be verified against several security control statements, such as a self repudiation control, taken from the NIST SP800-53. The workshop program has been announced and I’m looking forward to attending!
Program available at:
http://homes.dico.unimi.it/~monga/program11.html
Our paper “Security Policy Foundations in Context Unity” available at: