• DocumentCode
    3129250
  • Title

    Secure information flow by self-composition

  • Author

    Barthe, Gilles ; D´Argenio, Pedro R. ; Rezk, Tamara

  • Author_Institution
    INRIA, Sophia -Antipolis, France
  • fYear
    2004
  • fDate
    28-30 June 2004
  • Firstpage
    100
  • Lastpage
    114
  • Abstract
    Non-interference is a high-level security property that guarantees the absence of illicit information leakages through executing programs. More precisely, non-interference for a program assumes a separation between secret inputs and public inputs on the one hand, and secret outputs and public outputs on the other hand, and requires that the value of public outputs does not depend on the value of secret inputs. A common means to enforce non-interference is to use an information flow type system. However, such type systems are inherently imprecise, and reject many secure programs, even for simple programming languages. The purpose of this paper is to investigate logical formulations of noninterference that allow a more precise analysis of programs. It appears that such formulations are often sound and complete, and also amenable to interactive or automated verification techniques, such as theorem-proving or model-checking. We illustrate the applicability of our method in several scenarios, including a simple imperative language, a non-deterministic language, and finally a language with shared mutable data structures.
  • Keywords
    formal logic; security of data; automated verification; illicit information leakage; information flow security; interactive verification; logical formulation; model-checking; mutable data structures; nondeterministic language; noninterference; program analysis; programming languages; secure programs; self-composition; theorem-proving; Computer security; Conferences;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Foundations Workshop, 2004. Proceedings. 17th IEEE
  • ISSN
    1063-6900
  • Print_ISBN
    0-7695-2169-X
  • Type

    conf

  • DOI
    10.1109/CSFW.2004.1310735
  • Filename
    1310735