• DocumentCode
    3035164
  • Title

    Secure information flow and program logics

  • Author

    Beringer, Lennart ; Hofmann, Martin

  • Author_Institution
    Univ. Munchen, Munich
  • fYear
    2007
  • fDate
    6-8 July 2007
  • Firstpage
    233
  • Lastpage
    248
  • Abstract
    We present interpretations of type systems for secure information flow in Hoare logic, complementing previous encodings in binary (e.g. relational) program logics. Treating base-line non-interference, multi-level security and flow sensitivity for a while language, we show how typing derivations may be used to automatically generate proofs in the program logic that certify the absence of illicit flows. In addition, we present proof rules for baseline non-interference for object-manipulating instructions, As a consequence, standard verification technology may be used for verifying that a concrete program satisfies the noninterference property. Our development is based on a formalisation of the encodings in Isabelle/HOL.
  • Keywords
    security of data; Hoare logic; baseline non-interference; flow sensitivity; multilevel security; object-manipulating instructions; program logics; secure information flow; standard verification technology; Automatic logic units; Collaboration; Computer networks; Computer security; Concrete; Data security; Encoding; Impedance; Information security; Large-scale systems;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Foundations Symposium, 2007. CSF '07. 20th IEEE
  • Conference_Location
    Venice
  • ISSN
    1940-1434
  • Print_ISBN
    0-7695-2819-8
  • Type

    conf

  • DOI
    10.1109/CSF.2007.30
  • Filename
    4271652