Verification of secure distributed systems in higher order logic: A modular approach using generic components

Author

Alves-Foss, Jim ; Levitt, Karl

Author_Institution

Div. of Comput. Sci., California Univ., Davis, CA, USA

fYear

1991

fDate

20-22 May 1991

Firstpage

122

Lastpage

135

Abstract

A generalization of D. McCullough´s (1987; 1988) restrictiveness model is given as the basis for providing security properties for distributed system designs. This generalization is mechanized for an event-based model of computer systems in the HOL (higher order logic) system to prove the composability of the model and several other properties about the model. A set of generalized classes of system components is developed and it is shown for which families of user views they satisfy the model. Using these classes, a collection of general system components that are specializations of one of these classes is delineated and it is shown that the specializations also satisfy the security property. A sample distributed secure system is presented along with an example of how the proposed mechanized verification system can be used to verify such designs

Keywords

distributed processing; formal logic; program verification; security of data; HOL; composability; computer systems; distributed system designs; event-based model; general system components; generalized classes; higher order logic; mechanized verification system; modular approach; restrictiveness model; sample distributed secure system; security properties; system components; user views; Calculus; Computer science; Contracts; Data security; Filters; Logic design; Mechanical factors; Switches; Transformers; Writing;

fLanguage

English

Publisher

ieee

Conference_Titel

Research in Security and Privacy, 1991. Proceedings., 1991 IEEE Computer Society Symposium on

Conference_Location

Oakland, CA

Print_ISBN

0-8186-2168-0

Type

conf

DOI

10.1109/RISP.1991.130781

Filename

130781