The First International Workshop on Run Time Enforcement for Mobile and Distributed Systems (REM2007)

In conjunction with the 12th European Symposium On Research In Computer Security (ESORICS 2007), Dresden, Germany

Supported by the S3MS project.

http://www.cs.kuleuven.be/conference/ESORICS-REM2007/ 

Date: September 27, 2007

Link to CALL-FOR-PAPERS (submission deadline has passed)

NEW: Workshop programme is now available!

Workshop theme and goals

Run time monitoring and enforcement of policies is, and has been for a long time, one of the most important security technologies. Successful applications include operating system and middleware access control, firewalls, and stack inspection based sandboxing. With the increased interest in security at the level of applications, for instance to counter the threats of untrustworthy (malicious or buggy) code, run time monitoring and enforcement has seen an increased interest from the research community. Several models of run time monitors have been developed, such as security automata and edit automata, and the classes of policies that can be enforced with such monitors have been investigated. Suitable policy languages for expressing application-level policies are an active area of research, and a variety of mechanisms for implementing run time monitoring and enforcement, such as the inlining of monitors, system call interception, or aspect oriented programming have been studied. Moreover, with the advent of support for third party applications on mobile devices such as mobile phones and Personal Digital Assistants (PDA's), the importance of strong and efficient techniques for run time monitoring and enforcement grows even further.

The goal of this workshop is to bring together researchers and practitioners working on various aspects of run time monitoring and enforcement of security policies, to exchange ideas and disseminate new results. Original papers are solicited, both from industry and academia on new results or experiences with run time monitoring and enforcement.

Invited speakers

The workshop will include invited talks by:

• Jay Ligatti: Jay works on software security and programming languages, including: language-based security and reliability, software monitoring, policy analysis, and aspect-oriented and policy-specification languages. He has several influential results in areas that are of interest to this workshop. Jay codesigned Polymer, a well-known domain-specific aspect language for writing security policies. He worked on the Gleipnir project that designed a countermeasure against code injection attacks on C/C++, and he has done work on the foundations of aspect-oriented programming languages.
• Eric Vétillard: Eric is the Chief Technical Officer at Trusted Labs, a Trusted Logic company that specializes in security services. He joined in 2000 as a senior technical architect and was appointed CTO in 2004. He began his career in the smart cards industry in 1997, in Gemplus’ Advanced Research team, where he was involved in the early developments of Java Card™ technology. He will speak about Mobile payment security policies: What operators and banks really want ...
  
  

Programme NEW

Sept 26, 2007

Registration 16:00 - 18:30 in room Verdi

Sept 27, 2007

Registration 8:00 - 9:00 in room Verdi

The workshop itself takes place in room Medici

Session I (joint session with the STM workshop)

• 9:00 - 10:00 Invited talk Eric Vétillard
  
  Title: Mobile payment security policies: What operators and banks really want ...
  
  Abstract: Mobile payment is an idea that has been around for many years. As NFC and other contactless technologies become more common, this topic is becoming very hot among operators and banks. Today, the main remaining issues are not purely technical, but rather related to business models and responsibilities. One way to deal with responsibilities is to define policies, and this is what operators and banks are doing, each with their own requirements. Such policies include many requirements, which vary depending on the kind of application, and which can be enforced in many different ways. We will take a look at these policies on several kinds of applications, running on smart cards and on mobile phones, and we will look at the ways in which they can be enforced., and at the challenges faced by the various enforcement technologies to be accepted by the industry.

Coffee break / Opening / Welcome

Session II

• 11:00-11:30 A Virtual Machine Based Information Flow Control System for Policy Enforcement
  Srijith K. Nair, Patrick N.D. Simpson, Bruno Crispo and Andrew S. Tanenbaum
  
• 11:30-12:00 Monitoring External Resources in Java MIDP
  David Aspinall, Patrick Maier and Ian Stark
  
• 12:00-12:30 Infrastructural Support for Enforcing and Managing Distributed Application-Level Policies 
  Tom Goovaerts, Bart De Win and Wouter Joosen

12:30-14:00 Lunch

Session III

• 14:00-15:00 Invited talk Jay Ligatti
  
  Title: Coping with Runtime-Policy Complexity
  
  Abstract: The sorts of policies that security engineers wish to enforce tend to grow more and more complex.  Given their increasing complexity, we investigate which policies engineers could ever hope to enforce with runtime mechanisms, and we study strategies for simplifying the task of specifying those policies.
  Our investigation of the limits of runtime-policy enforcement focuses on defining and analyzing models of software monitors called "edit automata". We find that edit automata enforce an interesting class of policies that includes the safety policies, some liveness policies, and some policies that are neither safety nor liveness.
  We also study strategies for simplifying runtime-policy specifications by examining Polymer, a language in which users can specify complex policies as compositions of simpler subpolicies.  We discuss Polymer's techniques for managing policy complexity and demonstrate the language's expressiveness by encoding a nonsafety policy in it.
  
  
• 15:00-15:30 ConSpec -- a formal language for policy specification 
  Irem Aktug and Katsiaryna Naliuka

Coffee break

Session IV

• 16:00-16:30 Remote attestation on legacy operating systems with trusted platform modules
  Dries Schellekens, Brecht Wyseur and Bart Preneel
  
• 16:30-17:00 Implementing Trusted Terminals with a TPM and SITDRM 
  Sid Stamm, Nicholas Sheppard and Rei Safavi-Naini
  
• 17:00-17:30 Conclusions and wrap-up
  
  

Important dates

NOTE: submission and notification deadlines have changed!

Submission of workshop papers

June 29, 2007

Notification of workshop papers

August 15, 2007 (in time for early registration for ESORICS)

Final  version

September 15, 2007

Workshop date

September 27, 2007

Committees

PC Chairs: 

• Fabio Massacci, Universitŕ di Trento, Italy
• Frank Piessens, Katholieke Universiteit Leuven, Belgium

Programme Committee:

• Alexander Pretschner, ETH Zurich, Switzerland
• Brian LaMacchia,  Microsoft, USA
• Carlos Molina, Newcastle University, United Kingdom
• Dieter Gollmann, Hamburg University of Technology, Germany
• Eric Vétillard, Trusted Labs, France
• Erik Poll, Radboud Universiteit Nijmegen, The Netherlands
• Gilles Barthe,  INRIA Sophia-Antipolis, France
• Greg Morrisett, Harvard University, USA
• Grigore Rosu,  University of Illinois at Urbana-Champaign, USA
• Konstantin Beznosov, University of British Columbia, Canada
• Mads Dam, Royal Institute of Technology (KTH), Sweden
• Philip W.L. Fong, University of Regina, Regina, Saskatchewan, Canada
• R. Sekar, Stony Brook University, USA
• Silke Holtmanns, Nokia Research, Finland
• Thomas Walter, DoCoMo Communications Laboratories Europe GmbH, Germany
• Úlfar Erlingsson, Microsoft Research, USA

Publicity Chair:

• Katsiaryna Naliuka, Universitŕ di Trento, Italy