Alloy Community

User login

UofO

Home » Groups

Research Philosophy
Research ought to be beneficial. It should have an inter disciplinary potential. Crossing computer
science and law is an example, another is the use of mathematical logic to study telecommunication
systems. It is our position that technological and social networks will be affected by research
combining concepts from various disciplines. The potential of adoption of a research product is hard to
predict. Nonetheless, I believe that the following questions are fundamental:

  • usefulness the research can lead to a tangible system that can overcome an existing problem
  • expansion the concepts underlying the research should be reusable to similar problems
  • stickiness the ideas and tools generated should encourage others to support the domain

Research Method
The method is an instrumental part of our approach. At an abstract level, the method suggests the
extraction and representation of requirements using a logic-based language for its eventual analysis.
The method is independent of the language of extraction and the language of implementation. It
assumes a first order logic approach in the representation. The method is based on our core belief that
states: A legal requirements validation problem can be represented as first order logic problem. In
addition, the formal analysis techniques when applied to the logic model are able to assist in the legal
requirement validation question.
Waël A. Hassan, PhD.
SITE School of Information
Technology and Eng.
800 King Edward Avenue,
Office 4020
Ottawa, ON K1N 6N5
Tel: (613) 562-5738
Fax: (613) 562-5664

A relational logic approach for representing secrecy models and detecting their inconsistencies

Authors: 
Waël Hassan
Publication Venue: 
IThe 14th Nordic Conference on Secure IT Systems
When Published: 
Oct 14 2009
URL: 
Identity and Privacy in the Internet Age 14th Nordic Conference on Secure IT Systems, NordSec 2009, Oslo, Norway, 14-16 October 2009

Abstract. This paper presents a formal method for representing and detecting inconsistencies of combined secrecy models.

by whassan

Secrecy UML Method for Model Transformations

Authors: 
Waël Hassan, Nadera Slimani, Kamel Adi, and Luigi Logrippo
Publication Venue: 
Abstract State Machines, Alloy, B and Z
When Published: 
Feb 22 2010
URL: 
Theoretical Computer Science and General Issues, Vol. 5977 Frappier, M.; Glässer, U.; Khurshid, S.; Laleau, R.; Reeves, S. (Eds.)

Abstract. This paper introduces the subject of secrecy models development by transformation, with formal validation.

by whassan

A Governance Requirements Extraction Model for Legal Compliance Validation

Authors: 
Waël Hassan, Luigi Logrippo
Publication Venue: 
17th IEEE International Requirements Engineering Conference, RELAW Workshop , Atlanta, Georgia, USA – 31 August – 4 September 2009
When Published: 
Sep 1 2009
URL: 
http://www.csc2.ncsu.edu/workshops/relaw/index.html

We present a model-based approach to extract governance requirements from the law and enterprise regulations, to formal specifications.

by whassan

Detecting inconsistencies of mixed secrecy models and business policies

Authors: 
Waël Hassan, Luigi Logrippo
Publication Venue: 
University of Ottawa Technical Report
When Published: 
Feb 20 2009
URL: 
http://www.site.uottawa.ca/~whassan/Publications

Several secrecy models are known in practice, and governance requirements may make it necessary to combine them in order to implement the secrecy policies of an enterprise.

by whassan

SML tutorial

When Published: 
May 4 2009
URL: 
http://www.site.uottawa.ca/~whassan/Languages/index.html
Authors: 
Waël Hassan

This talk introduces SML which is a set of basic instructions used in modeling of secrecy models.

by whassan

SML: Secrecy Modeling Language code name silver

url: 
http://code.google.com/p/sml-silver/
latestversion: 
04/27/2009

SML is a language used by model designers to compose and validate models using formal analysis tool Alloy. SML is a simple relational language of first order.

by whassan

Policy-Driven Systems for Security, Privacy, and Governance: Semantic Analysis

Speakers: 
Luigi Logrippo
Location: 
CA World
Date: 
Nov 18 2008

Access control systems depend on the administrator formulating sets of policies determining the conditions for access.

by whassan

Governance Policies for Privacy Access and their Interactions

Speakers: 
Waël Hassan, Luigi Logrippo
Location: 
Leicester, UK
Date: 
Jun 29 2005

Abstract. We propose the use of process-based access-control methods in the construction of privacy governance systems.

by whassan

Requirements and compliance in legal systems: a logic approach

Speakers: 
Luigi Logrippo, Wael Hassan
Location: 
Barcelona, Catalunya, Spain
Date: 
Sep 9 2008

It is shown that the concepts of requirements and implementation exist in normative systems, in particular

by whassan

Validating Compliance with Privacy Legislation

Authors: 
Waël A. Hassan , Luigi Logrippo
Publication Venue: 
Journal of Information Systems Frontiers (In Press)
When Published: 
Oct 21 2008
URL: 
Information Systems Frontiers

Formal techniques and related automated tools can be applied to rigorously validate
legal requirements for privacy. In this paper we propose such techniques and tools that can allow

by whassan

Simple Library Model

Date: 
Aug 2 2008
author: 
Wael Hassan

abstract sig date {
}

one sig one_week extends date{}
one sig two_week extends date{}
one sig three_week extends date{}

abstract sig user {
AttachedTo : one policy
}

by whassan

Syndicate content  

The development of this site is supported by the National Science Foundation under Computing Research Infrastructure Grant No. 0707612.

Theme originally designed by Chris Herberte