Security boundaries in mobile ambients

Authors:
Chiara Braghin;Agostino Cortesi;Riccardo Focardi
Affiliations:
Dipartimento di Informatica, Universití Ca' Foscari di Venezia, Via Torino 155, 30173 Venezia-Mestre, Italy;Dipartimento di Informatica, Universití Ca' Foscari di Venezia, Via Torino 155, 30173 Venezia-Mestre, Italy;Dipartimento di Informatica, Universití Ca' Foscari di Venezia, Via Torino 155, 30173 Venezia-Mestre, Italy
Venue:
Computer Languages, Systems and Structures
Year:
2002

Citing 16
Cited 10

Secure information flow in a multi-threaded imperative language

POPL '98 Proceedings of the 25th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
The Compositional Security Checker: A Tool for the Verification of Information Flow Security Properties

IEEE Transactions on Software Engineering
Controlling interference in ambients

Proceedings of the 27th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Secure safe ambients

POPL '01 Proceedings of the 28th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Boxed Ambients

TACS '01 Proceedings of the 4th International Symposium on Theoretical Aspects of Computer Software
Safe Ambients: Control Flow Analysis and Security

ASIAN '00 Proceedings of the 6th Asian Computing Science Conference on Advances in Computing Science
Security Types for Mobile Safe Ambients

ASIAN '00 Proceedings of the 6th Asian Computing Science Conference on Advances in Computing Science
Information Flow vs. Resource Access in the Asynchronous Pi-Calculus

ICALP '00 Proceedings of the 27th International Colloquium on Automata, Languages and Programming
Control Flow Analysis for the pi-calculus

CONCUR '98 Proceedings of the 9th International Conference on Concurrency Theory
Abstract Interpretation of Mobile Ambients

SAS '99 Proceedings of the 6th International Symposium on Static Analysis
Ambient Groups and Mobility Types

TCS '00 Proceedings of the International Conference IFIP on Theoretical Computer Science, Exploring New Frontiers of Theoretical Informatics
Static Analysis of Processes for No and Read-Up nad No Write-Down

FoSSaCS '99 Proceedings of the Second International Conference on Foundations of Software Science and Computation Structure, Held as Part of the European Joint Conferences on the Theory and Practice of Software, ETAPS'99
Mobile Ambients

FoSSaCS '98 Proceedings of the First International Conference on Foundations of Software Science and Computation Structure
Control flow analysis of mobile ambients with security boundaries

FMOODS '02 Proceedings of the IFIP TC6/WG6.1 Fifth International Conference on Formal Methods for Open Object-Based Distributed Systems V
Abstract interpretation of mobile ambients

Science of Computer Programming - Special issue on static analysis (SAS'99)
Information Flow Analysis in a Discrete-Time Process Algebra

CSFW '00 Proceedings of the 13th IEEE workshop on Computer Security Foundations

Complexity of Nesting Analysis in Mobile Ambients

VMCAI 2003 Proceedings of the 4th International Conference on Verification, Model Checking, and Abstract Interpretation
Controlling data movement in global computing applications

Proceedings of the 2004 ACM symposium on Applied computing
Confining data and processes in global computing applications

Science of Computer Programming - Special issue on security issues in coordination models, languages, and systems
Information flow security in Boundary Ambients

Information and Computation
Flow-sensitive Leakage Analysis in Mobile Ambients

Electronic Notes in Theoretical Computer Science (ENTCS)
Checking Integrity via CoPS and Banana: the E-Commerce Case Study

Electronic Notes in Theoretical Computer Science (ENTCS)
Behind BANANA: Design and Implementation of a Tool for Nesting Analysis of Mobile Ambients

Electronic Notes in Theoretical Computer Science (ENTCS)
From Flow Logic to static type systems for coordination languages

Science of Computer Programming
Nesting analysis of mobile ambients

Computer Languages, Systems and Structures
Formalising security in ubiquitous and cloud scenarios

CISIM'12 Proceedings of the 11th IFIP TC 8 international conference on Computer Information Systems and Industrial Management

Quantified Score

Hi-index	0.00

Visualization

Abstract

A new notion of security boundary is introduced to model multilevel security policies in the scenario of mobile systems, within Cardelli and Gordon's ''pure'' mobile ambients calculus. Information leakage may be expressed in terms of the possibility for a hostile ambient to access confidential data that are not protected inside a security boundary. A control flow analysis is defined, as a refinement of the Hansen-Jensen-Nielsons's CFA, that allows to properly capture boundary crossings. In this way, direct information leakage may be statically detected.