Describing Secure Interfaces with Interface Automata

Authors:
Matias Lee;Pedro R. D'Argenio
Affiliations:
FaMAF, Universidad Nacional de Córdoba, Córdoba, Argentina;FaMAF, Universidad Nacional de Córdoba, Córdoba, Argentina
Venue:
Electronic Notes in Theoretical Computer Science (ENTCS)
Year:
2010

Citing 9
Cited 0

On-the-fly verification of finite transition systems

Formal Methods in System Design - Special issue on computer-aided verification: general methods
Interface automata

Proceedings of the 8th European software engineering conference held jointly with 9th ACM SIGSOFT international symposium on Foundations of software engineering
Communication and Concurrency

Communication and Concurrency
Classification of Security Properties (Part I: Information Flow)

FOSAD '00 Revised versions of lectures given during the IFIP WG 1.7 International School on Foundations of Security Analysis and Design on Foundations of Security Analysis and Design: Tutorial Lectures
Interface Theories for Component-Based Design

EMSOFT '01 Proceedings of the First International Workshop on Embedded Software
Timed Interfaces

EMSOFT '02 Proceedings of the Second International Conference on Embedded Software
"On the Fly" Verification of Behavioural Equivalences and Preorders

CAV '91 Proceedings of the 3rd International Workshop on Computer Aided Verification
Non-Interference Control Synthesis for Security Timed Automata

Electronic Notes in Theoretical Computer Science (ENTCS)
Synthesis of Non-Interferent Timed Systems

FORMATS '09 Proceedings of the 7th International Conference on Formal Modeling and Analysis of Timed Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Interface automata are a model that allows for the representation of stateful interfaces. In this paper we introduce a variant of interface automata, which we call interface structure for security (ISS), that allows for the modelling of security. We focus on the property of non interference, more precisely in bisimulation-based non interference for reactive systems. We define the notion of compatible interfaces in this setting meaning that they can be composed so that a secure interface can be synthesized from the composition. In fact, we provide an algorithm that determines whether an ISS can be made secure by controlling (more specifically, pruning) some public input actions, and if so, synthesize the secure ISS. In addition, we also provide some sufficient conditions on the components ISS to ensure that their composition is secure (and hence no synthesis process is needed).