Automated xacml policy reconfiguration for evaluation optimisation

摘要

This year the program committee selected eight papers to be presented at the workshop. >The issues addressed are very diverse, another demonstration of how security cross-cuts all the activities of modern software engineering practice. We will discuss the optimization of XACML policies, the enforcing of privacy-related policies, a formal description of security patterns by Petrinets, the integration of security checks with version control, the feasibility and use of runtime verification as means for monitoring security protocols, automated content-based signature generation resilient to poisoning attacks, coverage metrics which can be useful to assess how complete was the security test of an application in the context of SQL queries, and software security metrics on source code.