Distributed Noninterference

Author

Almeida Matos, Ana ; Cederquist, Jan

Author_Institution

Inst. de Telecomun. (SQIG), Univ. de Lisboa (IST), Lisbon, Portugal

fYear

2014

fDate

12-14 Feb. 2014

Firstpage

760

Lastpage

764

Abstract

Noninterference is the classic information flow property that establishes the absence of illegal information flows. Legality of flows is originally defined with respect to a single security setting that is based on a security lattice that orders security levels according to their confidentiality and/or integrity. This paper proposes a natural generalization of noninterference to a distributed security setting where each computation domain establishes its own local security lattice. Referred to as distributed noninterference (DNI), the new security property implies that information flows respect the allowed flow policy of the domains where they are computed. The semantic coherence between DNI and other information flow related properties for distributed settings is established. We present a type and effect system that enforces DNI for an expressive distributed higher-order lambda-calculus with imperative features and code migration.

Keywords

distributed processing; security of data; DNI; code migration; distributed higher-order lambda-calculus; distributed noninterference; distributed security setting; noninterference natural generalization; security property; Computational modeling; Instruction sets; Labeling; Lattices; Mobile communication; Security; Semantics; distribution; information flow; noninterference;

fLanguage

English

Publisher

ieee

Conference_Titel

Parallel, Distributed and Network-Based Processing (PDP), 2014 22nd Euromicro International Conference on

Conference_Location

Torino

ISSN

1066-6192

Type

conf

DOI

10.1109/PDP.2014.45

Filename

6787357