Title :
Connection policies and controlled interference
Author :
Bevier, William R. ; Cohen, Richard M. ; Young, William D.
Author_Institution :
Computational Logic Inc., Austin, TX, USA
Abstract :
A communication policy is a specification for permitted communication among system agents. A system exhibits noninterference with respect to a policy if every agent is insensitive to the presence of agents with which it may not communicate. A communication policy specifies the presence or absence of communication between agents, but it does not specify how permitted communication may occur. In this paper we present a refinement of a communication policy, which we call a connection policy. A connection policy specifies the channels along which permitted communication may occur. A system observes controlled interference when its connection policy is satisfied. When a connection policy is consistent with a communication policy, controlled interference guarantees noninterference. We discuss Rushby´s notion of separation. In light of controlled interference, and briefly relate controlled interference to type enforcement. The formalization of the controlled interference theory is built on the state-based formulation of noninterference previously developed by two of the authors. A theme of this paper is that a state-based approach to these issues is simple and useful
Keywords :
distributed processing; security of data; communication policy; computer security; connection policy; controlled interference; state-based formulation; system agents; Communication system control; Communication system security; Computer security; Control systems; Interference; Lighting control; Logic; Privacy;
Conference_Titel :
Computer Security Foundations Workshop, 1995. Proceedings., Eighth IEEE
Conference_Location :
County Kerry
Print_ISBN :
0-8186-7033-9
DOI :
10.1109/CSFW.1995.518561
