CSC News
Xie Receives Funding for Two Research Proposals
Congratulations to Dr. Tao Xie, associate professor of computer science at NC State University, who has been awarded over $100,000 to fund two research proposals.The first award, from the National Science Foundation (NSF), is valued at $60,000 and supports his proposal titled “Differential Analysis on Changes in Medical Device Software.” The award runs from October 1, 2012 through September 30, 2013.
Abstract - As medical device technology evolves, so too does the software upon which the technology often relies. Changes in device software, after it has been approved or cleared, may compromise the safety of that device. Assessing the safety of such changes presents special challenges to regulators at the FDA. This project explores differential analysis techniques to assess the effects of software changes on device safety.
The second award, from the US Department of Commerce (DOC)/NIST, is valued at $50,000 and supports his research proposal titled “Diagraph method in Detecting Rule Faults for Attribute Based Access Control Policies.” The award runs from January 1, 2013 through December 31, 2013.
Abstract - Even though Access Control (AC) policies can be implemented based on different AC models, the most common and generic AC policies are composed by AC rules in propositions of privilege assignments described by attributes of subjects, actions, objects, and environment variables of the protected systems. Such modeless AC policies are called Attribute Based Access Control (ABAC) policies. Incorrect implementations of AC policies result in faults that not only leak but also disable access of information, and faults in ABAC polices are difficult to detect without support of formal embedded models such as Multi-Level Security (MLS) and Chinese Wall. This research proposes a diagraph analysis method that detects faults including conflicts of privilege assignments, leaks of information, and conflicts of interest assignments.
~coates~
Return To News Homepage