Monitoring software to enforce run-time policies
The first half of this talk defines a model for dynamic policy enforcement. we abstract run-time program monitors as “edit automata” and analyze the policies edit automata can enforce. in particular, we find that these monitors enforce an interesting class of policies that includes safety properties, some liveness policies, and some properties that are neither safety nor liveness. the second half of the talk focuses on polymer, a language for specifying complex run-time policies as compositions of simpler subpolicies. we explain the compositionality of polymer policies and demonstrate the language’s expressiveness by encoding a nonsafety property in it.