@article{control-tcpa:safford03, author = {David Safford and Jeff Kravitz and Leendert van Doorn}, title = {{Take Control of TCPA}}, journal = {Linux J.}, volume = {2003}, number = {112}, year = {2003}, issn = {1075-3583}, pages = {2}, publisher = {Specialized Systems Consultants, Inc.}, address = {Seattle, WA, USA}, } @Misc{wikipediaTC, title = {Trusted Computing Definition on Wikipedia}, howpublished = {http://en.wikipedia.org/wiki/Trusted\_Computing}, } @inproceedings{tc-webservices:nagarajan:07, author = {Aarthi Nagarajan and Vijay Varadharajan and Michael Hitchens}, title = {{Trust Management for Trusted Computing Platforms in Web Services}}, booktitle = {STC 07: The Second ACM Workshop on Scalable Trusted Computing, under ACM CCS 07}, year = {2007}, location = {Alexandria}, publisher = {ACM}, address = {Virginia, USA}, } @inproceedings{uppaal:dimacs95, title = {{{\sc Uppaal} --- a Tool Suite for Automatic Verification of Real--Time Systems}}, author = {Johan Bengtsson and Kim G.\ Larsen and Fredrik Larsson and Paul Pettersson and Wang Yi}, booktitle = {Proc.\ of Workshop on Verification and Control of Hybrid Systems III}, series = {Lecture Notes in Computer Science}, number = 1066, pages = {232--243}, publisher = {Springer--Verlag}, month = Oct, year = 1995 } @inproceedings{DBLP:conf/models/HafnerAB06, author = {Michael Hafner and Muhammad Alam and Ruth Breu}, title = {{Towards a MOF/QVT-Based Domain Architecture for Model Driven Security.}}, booktitle = {MoDELS}, year = {2006}, pages = {275-290}, ee = {http://dx.doi.org/10.1007/11880240_20}, crossref = {DBLP:conf/models/2006}, bibsource = {DBLP, http://dblp.uni-trier.de} } @article{1059963, author = {W. Douglas Varney and Elizabeth A. Unger}, title = {{A Model of Data Integrity}}, journal = {SIGSMALL/PC Notes}, volume = {16}, number = {2}, year = {1990}, issn = {0893-2875}, pages = {29--33}, doi = {http://doi.acm.org/10.1145/1059960.1059963}, publisher = {ACM Press}, address = {New York, NY, USA}, } @inproceedings{int-sel:jaeger03, author = {Trent Jaeger and Reiner Sailer and Xiaolan Zhang}, title = {{Analyzing Integrity Protection in the SELinux Example Policy}}, booktitle = {SSYM'03: Proceedings of the 12th conference on USENIX Security Symposium}, year = {2003}, pages = {5--5}, location = {Washington, DC}, publisher = {USENIX Association}, address = {Berkeley, CA, USA}, } @book{Pacifica, author = {Advanced Micro Devices}, title = {{AMD Secure Virtual Machine Architecture Reference Manual}}, year = {2005}, publisher = {AMD}, } @book{safer-computing:intel05, author = {David Grawrock}, title = {{The Intel Safer Computing Initiative Building Blocks for Trusted Computing}}, year = {2005}, isbn = {0976483262}, publisher = {Intel Press}, address = {http://www.intel.com/intelpress/sum\_secc.htm}, } @book{tcpa:pearson02, author = {Siani Pearson}, title = {{Trusted Computing Platforms: TCPA Technology in Context}}, year = {2002}, isbn = {0130092207}, publisher = {Prentice Hall PTR}, address = {Upper Saddle River, NJ, USA}, } @techreport{tcg-spec-overview, citeulike-article-id = {1356497}, comment = {055}, institution = {{Trusted Computing Group}}, journal = {TGG}, keywords = {tpm}, month = {April}, priority = {5}, title = {{TCG Specification Architecture Overview v1.2, page 11-12}}, year = {2004} } @techreport{saml-xacml, citeulike-article-id = {1356497}, comment = {055}, institution = {{OASIS}}, month = {February}, title = {{SAML 2.0 profile of XACML v2.0}}, year = {2005} } @inproceedings{att-enf:sailer04, author = {Reiner Sailer and Trent Jaeger and Xiaolan Zhang and Leendert van Doorn}, title = {{Attestation-based Policy Enforcement for Remote Access}}, booktitle = {CCS '04: Proceedings of the 11th ACM conference on Computer and communications security}, year = {2004}, isbn = {1-58113-961-6}, pages = {308--317}, location = {Washington DC, USA}, doi = {http://doi.acm.org/10.1145/1030083.1030125}, publisher = {ACM Press}, address = {New York, NY, USA}, } @inproceedings{prima:jaeger06, author = {Trent Jaeger and Reiner Sailer and Umesh Shankar}, title = {{PRIMA: Policy-Reduced Integrity Measurement Architecture}}, booktitle = {SACMAT '06: Proceedings of the eleventh ACM symposium on Access control models and technologies}, year = {2006}, isbn = {1-59593-353-0}, pages = {19--28}, location = {Lake Tahoe, California, USA}, doi = {http://doi.acm.org/10.1145/1133058.1133063}, publisher = {ACM Press}, address = {New York, NY, USA}, } @misc{TCG, title = {{Trusted Computing Group (TCG)}}, note= {https://www.trustedcomputinggroup.org/ }} @inproceedings{ifa-rbac:osborn02, author = {Sylvia L. Osborn}, title = {{Information Flow Analysis of an RBAC System}}, booktitle = {SACMAT '02}, year = {2002}, pages = {163-168}, ee = {http://doi.acm.org/10.1145/507711.507738}, bibsource = {DBLP, http://dblp.uni-trier.de} } @misc{SELinux, title = {{Security-Enhanced Linux (SELinux)}}, note= {http://www. nsa. gov/ selinux/}} @misc{isabelle, title = {{Isabelle: A Generic Theorem Proving Environment}}, note= {http://isabelle.in.tum.de/}} @misc{impl:sunxacml, title = {{Sun's XACML Implementation}}, note= {http://sunxacml. sourceforge. net}} @article{ws-att:yoshihama07, title={{WS-Attestation: Enabling Trusted Computing on Web Services}}, author={Yoshihama, S. and Ebringer, T. and Nakamura, M. and Munetoh, S. and Mishina, T. and Maruyama, H.}, journal={Test and Analysis of Web Services}, year={2007}, pages={441--469} } @article{ws-trust:anderson, title={{Web Services Trust Language (WS-Trust)}}, author={Anderson, S. and Bohren, J. and Boubez, T. and others}, journal={Public draft release, Actional Corporation, BEA Systems, Computer Associates International, International Business Machines Corporation, Layer}, volume={7} } @inproceedings{rbac95:sandhu96, author = {Ravi Sandhu}, title = {{Rationale for the RBAC96 Family of Access Control Models}}, booktitle = {RBAC '95: Proceedings of the first ACM Workshop on Role-based access control}, year = {1996}, isbn = {0-89791-759-6}, pages = {9}, location = {Gaithersburg, Maryland, United States}, doi = {http://doi.acm.org/10.1145/270152.270167}, publisher = {ACM Press}, address = {New York, NY, USA}, } @article{gtrbac:joshi05, author={Joshi, J.B.D. and Bertino, E. and Latif, U. and Ghafoor, A.}, title = {{A Generalized Temporal Role-Based Access Control Model}}, journal = {IEEE Transactions on Knowledge and Data Engineering}, volume = {17}, number = {1}, year = {2005}, issn = {1041-4347}, pages = {4--23}, doi = {http://dx.doi.org/10.1109/TKDE.2005.1}, publisher = {IEEE Educational Activities Department}, address = {Piscataway, NJ, USA}, } @inproceedings{dac-roles:sandhu98, author = {Ravi Sandhu and Qamar Munawer}, title = {{How to do Discretionary Access Control Using Roles}}, booktitle = {RBAC '98: Proceedings of the third ACM workshop on Role-based access control}, year = {1998}, isbn = {1-58113-113-5}, pages = {47--54}, location = {Fairfax, Virginia, United States}, doi = {http://doi.acm.org/10.1145/286884.286893}, publisher = {ACM Press}, address = {New York, NY, USA}, } @inproceedings{mac-rbac:osborn97, author = {Sylvia Osborn}, title = {{Mandatory Access Control and Role-based Access Control Revisited}}, booktitle = {RBAC '97: Proceedings of the second ACM workshop on Role-based access control}, year = {1997}, isbn = {0-89791-985-8}, pages = {31--40}, location = {Fairfax, Virginia, United States}, doi = {http://doi.acm.org/10.1145/266741.266751}, publisher = {ACM Press}, address = {New York, NY, USA}, } @article{lbac:sandhu93, author = {Ravi S. Sandhu}, title = {{Lattice-Based Access Control Models}}, journal = {Computer}, volume = {26}, number = {11}, year = {1993}, issn = {0018-9162}, pages = {9--19}, doi = {http://dx.doi.org/10.1109/2.241422}, publisher = {IEEE Computer Society Press}, address = {Los Alamitos, CA, USA}, } @article{tla:lamport94, author = {Leslie Lamport}, title = {{The Temporal Logic of Actions}}, journal = {ACM Trans. Program. Lang. Syst.}, volume = {16}, number = {3}, year = {1994}, issn = {0164-0925}, pages = {872--923}, doi = {http://doi.acm.org/10.1145/177492.177726}, publisher = {ACM Press}, address = {New York, NY, USA}, } @inproceedings{prop-att:poritz, author = {Jonathan Poritz and Matthias Schunter and Els Van Herreweghen, and Michael Waidner}, title={{Property Attestation -- Scalable and Privacy-friendly Security Assessment of Peer Computers}}, booktitle={IBM Research Report RZ 3548 (\# 99559) 05/10/2004.}, } @Misc{wspolicy, key = {ws-policy}, title = {{Web Services Policy 1.2}}, note={http://www. w3. org/ Submission/ WS-Policy/} } @Misc{trusted-java, title = {{Trusted Computing for the Java(tm) Platform. available at,}}, note={http://trustedjava. sourceforge. net/} } @Misc{iaiksite, title = {{IAIK: Institute for Applied Information Processing and Communications, Graz University of Technology.}}, note={http://www. iaik. tugraz. at/} } @inproceedings{state-trans-ac:changer01, author = {Ajay Chander and John C. Mitchell and Drew Dean}, title = {{A State-Transition Model of Trust Management and Access Control}}, booktitle = {CSFW '01: Proceedings of the 14th IEEE workshop on Computer Security Foundations}, year = {2001}, pages = {27}, publisher = {IEEE Computer Society}, address = {Washington, DC, USA} } @Misc{XACML, key = {XACML}, title = {{XACML 2.0 Specification Set}}, note={{Available at: http://www.oasis-open.org/ committees/ tc\_home.php? wg\_abbrev=xacml}} } @article{ucon-formal:zhang05, author = {Xinwen Zhang and Francesco Parisi-Presicce and Ravi Sandhu and Jaehong Park}, title = {{Formal Model and Policy Specification of Usage Control}}, journal = {ACM Trans. Inf. Syst. Secur.}, volume = {8}, number = {4}, year = {2005}, issn = {1094-9224}, pages = {351--387}, doi = {http://doi.acm.org/10.1145/1108906.1108908}, publisher = {ACM Press}, address = {New York, NY, USA} } @misc{semantic:haldar04, author = {Haldar, Vivek and Chandra, Deepak and Franz, Michael}, note = {\textit{In. Proc. of the Third Virtual Macine Research and Technology Symposium USENIX 2004}}, citeulike-article-id = {1157253}, comment = {a developed remote attestation using trusted computing}, keywords = {attestation remote}, priority = {4}, title = {Semantic Remote Attestation -- A Virtual Machine directed approach to Trusted Computing}, url = {http://citeseer.ist.psu.edu/703482.html} } @inproceedings{efficient-att:li06, author = {Xiao-Yong Li and Chang-xiang Shen and Xiao-Dong Zuo}, title = {{An Efficient Attestation for Trustworthiness of Computing Platform}}, booktitle = {IIH-MSP}, year = {2006}, pages = {625-630}, ee = {http://doi.ieeecomputersociety.org/10.1109/IIH-MSP.2006.48}, crossref = {DBLP:conf/iih-msp/2006}, bibsource = {DBLP, http://dblp.uni-trier.de} } @inproceedings{ima:sailer04, author = {Reiner Sailer and Xiaolan Zhang and Trent Jaeger and Leendert van Doorn}, title = {{Design and Implementation of a TCG-based Integrity Measurement Architecture}}, booktitle = {SSYM'04: Proceedings of the 13th conference on USENIX Security Symposium}, year = {2004}, pages = {16--16}, location = {San Diego, CA}, publisher = {USENIX Association}, address = {Berkeley, CA, USA} } @inproceedings{property-protocol:chen06, author = {Liqun Chen and Rainer Landfermann and Hans L\"{o}hr and Markus Rohe and Ahmad-Reza Sadeghi and Christian St\"{u}ble}, title = {{A Protocol for Property-based Attestation}}, booktitle = {STC '06: Proceedings of the first ACM workshop on Scalable trusted computing}, year = {2006}, isbn = {1-59593-548-7}, pages = {7--16}, location = {Alexandria, Virginia, USA}, doi = {http://doi.acm.org/10.1145/1179474.1179479}, publisher = {ACM Press}, address = {New York, NY, USA} } @inproceedings{bind:shi05, author = {Elaine Shi and Adrian Perrig and Leendert Van Doorn}, title = {{BIND: A Fine-Grained Attestation Service for Secure Distributed Systems}}, booktitle = {SP '05: Proceedings of the 2005 IEEE Symposium on Security and Privacy}, year = {2005}, isbn = {0-7695-2339-0}, pages = {154--168}, doi = {http://dx.doi.org/10.1109/SP.2005.4}, publisher = {IEEE Computer Society}, address = {Washington, DC, USA} } @inproceedings{ucon:park02, author = {Jaehong Park and Ravi Sandhu}, title = {{Towards Usage Control Models: Beyond Traditional Access Control}}, booktitle = {SACMAT '02: Proceedings of the seventh ACM symposium on Access control models and technologies}, year = {2002}, isbn = {1-58113-496-7}, pages = {57--64}, location = {Monterey, California, USA}, doi = {http://doi.acm.org/10.1145/507711.507722}, publisher = {ACM Press}, address = {New York, NY, USA}, } @article{ics:biba77, title={{Integrity Considerations for Secure Computer Systems}}, author={Biba, K.J.}, year={1977}, publisher={DTIC Research Report ADA039324} } @inproceedings{opc:clark87, title={{A Comparison of Commercial and Military Computer Security Policies}}, author={Clark, D.D. and Wilson, D.R.}, booktitle={Proceedings of the 1987 IEEE Symposium on Security and Privacy}, year={1987} } @inproceedings{conflict-sel:jaeger04, author = {Trent Jaeger and Reiner Sailer and Xiaolan Zhang}, title = {Resolving constraint conflicts}, booktitle = {SACMAT '04: Proceedings of the ninth ACM symposium on Access control models and technologies}, year = {2004}, isbn = {1-58113-872-5}, pages = {105--114}, location = {Yorktown Heights, New York, USA}, doi = {http://doi.acm.org/10.1145/990036.990053}, publisher = {ACM}, address = {New York, NY, USA} } @inproceedings{int-protection:jaeger03, author = {Trent Jaeger and Reiner Sailer and Xiaolan Zhang}, title = {Analyzing integrity protection in the SELinux example policy}, booktitle = {SSYM'03: Proceedings of the 12th conference on USENIX Security Symposium}, year = {2003}, pages = {5--5}, location = {Washington, DC}, publisher = {USENIX Association}, address = {Berkeley, CA, USA} } @inproceedings{tam-mtam:sandhu92, author = {Ravi S. Sandhu}, title = {The Typed Access Matrix Model}, booktitle = {SP '92: Proceedings of the 1992 IEEE Symposium on Security and Privacy}, year = {1992}, isbn = {0-8186-2825-1}, pages = {122}, publisher = {IEEE Computer Society}, address = {Washington, DC, USA} } @inproceedings{first-exp-xacml:lorch03, author = {Markus Lorch and Seth Proctor and Rebekah Lepro and Dennis Kafura and Sumit Shah}, title = {First experiences using XACML for access control in distributed systems}, booktitle = {XMLSEC '03: Proceedings of the 2003 ACM workshop on XML security}, year = {2003}, isbn = {1-58113-777-X}, pages = {25--37}, location = {Fairfax, Virginia}, doi = {http://doi.acm.org/10.1145/968559.968563}, publisher = {ACM}, address = {New York, NY, USA}, } @inproceedings{mba:alam08, author = {M. Alam and X. Zhang and M. Nauman and T. Ali and J.P. Seifert }, title = {{Model-based Behavioral Attestation}}, booktitle = {SACMAT '08: Proceedings of the thirteenth ACM symposium on Access control models and technologies.}, year = {2008}, location = {Colorado, USA}, publisher = {ACM Press}, address = {New York, NY, USA}, } @article{ws-security:atkinson, title={{Web Services Security (WS-Security)}}, author={Atkinson, B. and Della-Libera, G. and Hada, S. and Hondo, M. and Hallam-Baker, P. and Klein, J. and LaMacchia, B. and Leach, P. and Manferdelli, J. and Maruyama, H. and others}, journal={Version}, volume={1} } @inproceedings{trustedsectet:alam07, author = {Masoom Alam and Jean-Pierre Seifert and Xinwen Zhang}, title = {A Model-Driven Framework for Trusted Computing Based Systems}, booktitle = {EDOC '07: Proceedings of the 11th IEEE International Enterprise Distributed Object Computing Conference}, year = {2007}, isbn = {0-7695-2891-0}, pages = {75}, publisher = {IEEE Computer Society}, address = {Washington, DC, USA}, } @inproceedings{platform-sel:alam08, author = {Masoom Alam and Qi Li and Xinwen Zhang and Jean-Pierre Seifert}, title = {Usage Control Platformization via Trustworthy SELinux}, booktitle = {ASIACCS'08: Proceedings of the 2008 ACM Symposium on Information, Computer and Communications Security}, year = {2008} } @inproceedings{propert-att:sadeghi04, author = {Ahmad-Reza Sadeghi and Christian St\"{u}ble}, title = {{Property-based Attestation for Computing Platforms: Caring about Properties, not Mechanisms}}, booktitle = {NSPW '04: Proceedings of the 2004 Workshop on New Security Paradigms}, year = {2004}, isbn = {1-59593-076-0}, pages = {67--77}, location = {Nova Scotia, Canada}, doi = {http://doi.acm.org/10.1145/1065907.1066038}, publisher = {ACM Press}, address = {New York, NY, USA} } @article{trusted-ws:song06, title={{Trusted Web Service}}, author={Song, Z. and Lee, S. and Masuoka, R.}, journal={The Second Workshop on Advances in Trusted Computing (WATC’06 Fall)}, year={2006} } @book{sel-example:mayer06, title={{SELinux by Example: Using Security Enhanced Linux}}, author={Mayer, F. and MacMillan, K. and Caplan, D.}, year={2006}, publisher={Prentice Hall} } @inproceedings{safety-ucon:zhang06, author = {Xinwen Zhang and Ravi Sandhu and Francesco Parisi-Presicce}, title = {{Safety Analysis of Usage Control Authorization Models}}, booktitle = {ASIACCS '06: Proceedings of the 2006 ACM Symposium on Information, computer and communications security}, year = {2006}, isbn = {1-59593-272-0}, pages = {243--254}, location = {Taipei, Taiwan}, doi = {http://doi.acm.org/10.1145/1128817.1128853}, publisher = {ACM}, address = {New York, NY, USA}, } @article{lattice-if-model:denning76, author = {Dorothy E. Denning}, title = {A lattice model of secure information flow}, journal = {Commun. ACM}, volume = {19}, number = {5}, year = {1976}, issn = {0001-0782}, pages = {236--243}, doi = {http://doi.acm.org/10.1145/360051.360056}, publisher = {ACM}, address = {New York, NY, USA}, }