DocumentCode
3129250
Title
Secure information flow by self-composition
Author
Barthe, Gilles ; D´Argenio, Pedro R. ; Rezk, Tamara
Author_Institution
INRIA, Sophia -Antipolis, France
fYear
2004
fDate
28-30 June 2004
Firstpage
100
Lastpage
114
Abstract
Non-interference is a high-level security property that guarantees the absence of illicit information leakages through executing programs. More precisely, non-interference for a program assumes a separation between secret inputs and public inputs on the one hand, and secret outputs and public outputs on the other hand, and requires that the value of public outputs does not depend on the value of secret inputs. A common means to enforce non-interference is to use an information flow type system. However, such type systems are inherently imprecise, and reject many secure programs, even for simple programming languages. The purpose of this paper is to investigate logical formulations of noninterference that allow a more precise analysis of programs. It appears that such formulations are often sound and complete, and also amenable to interactive or automated verification techniques, such as theorem-proving or model-checking. We illustrate the applicability of our method in several scenarios, including a simple imperative language, a non-deterministic language, and finally a language with shared mutable data structures.
Keywords
formal logic; security of data; automated verification; illicit information leakage; information flow security; interactive verification; logical formulation; model-checking; mutable data structures; nondeterministic language; noninterference; program analysis; programming languages; secure programs; self-composition; theorem-proving; Computer security; Conferences;
fLanguage
English
Publisher
ieee
Conference_Titel
Computer Security Foundations Workshop, 2004. Proceedings. 17th IEEE
ISSN
1063-6900
Print_ISBN
0-7695-2169-X
Type
conf
DOI
10.1109/CSFW.2004.1310735
Filename
1310735
Link To Document