Information Flow Security in Dynamic Contexts

Authors:
Riccardo Focardi;Sabina Rossi
Affiliations:
-;-
Venue:
CSFW '02 Proceedings of the 15th IEEE workshop on Computer Security Foundations
Year:
2002

Citing 20
Cited 35

Three partition refinement algorithms

SIAM Journal on Computing
CCS expressions finite state processes, and three problems of equivalence

Information and Computation
Online minimization of transition systems (extended abstract)

STOC '92 Proceedings of the twenty-fourth annual ACM symposium on Theory of computing
Characteristic formulae for processes with divergence

Information and Computation
Modal and temporal logics for processes

Proceedings of the VIII Banff Higher order workshop conference on Logics for concurrency : structure versus automata: structure versus automata
Secure information flow in a multi-threaded imperative language

POPL '98 Proceedings of the 25th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
The Compositional Security Checker: A Tool for the Verification of Information Flow Security Properties

IEEE Transactions on Software Engineering
Verifying Authentication Protocols in CSP

IEEE Transactions on Software Engineering
Secrecy by typing in security protocols

Journal of the ACM (JACM)
Process algebra and non-interference

Journal of Computer Security
Communication and Concurrency

Communication and Concurrency
Primitives for authentication in process algebras

Theoretical Computer Science
Classification of Security Properties (Part I: Information Flow)

FOSAD '00 Revised versions of lectures given during the IFIP WG 1.7 International School on Foundations of Security Analysis and Design on Foundations of Security Analysis and Design: Tutorial Lectures
Non Interference for the Analysis of Cryptographic Protocols

ICALP '00 Proceedings of the 27th International Colloquium on Automata, Languages and Programming
A Uniform Approach for the Definition of Security Properties

FM '99 Proceedings of the Wold Congress on Formal Methods in the Development of Computing Systems-Volume I - Volume I
A Fast Bisimulation Algorithm

CAV '01 Proceedings of the 13th International Conference on Computer Aided Verification
Symbolic Bisimulation Minimisation

CAV '92 Proceedings of the Fourth International Workshop on Computer Aided Verification
Proving Properties of Security Protocols by Induction

CSFW '97 Proceedings of the 10th IEEE workshop on Computer Security Foundations
Probabilistic Noninterference for Multi-Threaded Programs

CSFW '00 Proceedings of the 13th IEEE workshop on Computer Security Foundations
A Compositional Logic for Protocol Correctness

CSFW '01 Proceedings of the 14th IEEE workshop on Computer Security Foundations

Transforming Processes to Check and Ensure Information Flow Security

AMAST '02 Proceedings of the 9th International Conference on Algebraic Methodology and Software Technology
Bisimulation and Unwinding for Verifying Possibilistic Security Properties

VMCAI 2003 Proceedings of the 4th International Conference on Verification, Model Checking, and Abstract Interpretation
Information flow in hybrid systems

ACM Transactions on Embedded Computing Systems (TECS)
Non-interference proof technique for the analysis of cryptographic protocols

Journal of Computer Security - Special issue on WITS'03
The framework of selective interleaving functions and the modular assembly kit

Proceedings of the 2005 ACM workshop on Formal methods in security engineering
Decidability and proof systems for language-based noninterference relations

Conference record of the 33rd ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Information flow in secure contexts

Journal of Computer Security
P-congruences as non-interference for the pi-calculus

Proceedings of the fourth ACM workshop on Formal methods in security
Network Information Flow

Fundamenta Informaticae - SPECIAL ISSUE ON CONCURRENCY SPECIFICATION AND PROGRAMMING (CS&P 2005) Ruciane-Nide, Poland, 28-30 September 2005
Information flow security in dynamic contexts

Journal of Computer Security
Controlling information release in the π-calculus

Information and Computation
Defining information flow quantity

Journal of Computer Security - Special issue on CSFW15
State-oriented Noninterference for CCS

Electronic Notes in Theoretical Computer Science (ENTCS)
Observation Based System Security

Fundamenta Informaticae - Special Issue on Concurrency Specification and Programming (CS&P)
Probabilistic Information Flow Security

Fundamenta Informaticae - Concurrency Specification and Programming (CS&P)
Towards Information Flow Properties for Distributed Systems

Electronic Notes in Theoretical Computer Science (ENTCS)
Causality and Accountability

Formal Aspects in Security and Trust
Quantifying Security for Timed Process Algebras

Fundamenta Informaticae - Concurrency Specification and Programming (CS&P)
Unwinding in Information Flow Security

Electronic Notes in Theoretical Computer Science (ENTCS)
Checking Integrity via CoPS and Banana: the E-Commerce Case Study

Electronic Notes in Theoretical Computer Science (ENTCS)
A proof system for information flow security

LOPSTR'02 Proceedings of the 12th international conference on Logic based program synthesis and transformation
A typed theory for access control and information flow control in mobile systems

ACISP'03 Proceedings of the 8th Australasian conference on Information security and privacy
Rule formats for non interference

ESOP'03 Proceedings of the 12th European conference on Programming
What semantic equivalences are suitable for non-interference properties in computer security

ICICS'07 Proceedings of the 9th international conference on Information and communications security
A theory of noninterference for the π-calculus

TGC'05 Proceedings of the 1st international conference on Trustworthy global computing
Bridging language-based and process calculi security

FOSSACS'05 Proceedings of the 8th international conference on Foundations of Software Science and Computation Structures
Verifying persistent security properties

Computer Languages, Systems and Structures
Quantifying Security for Timed Process Algebras

Fundamenta Informaticae - Concurrency Specification and Programming (CS&P)
Probabilistic Information Flow Security

Fundamenta Informaticae - Concurrency Specification and Programming (CS&P)
Conditional information flow policies and unwinding relations

TGC'11 Proceedings of the 6th international conference on Trustworthy Global Computing
Observation Based System Security

Fundamenta Informaticae - Special Issue on Concurrency Specification and Programming (CS&P)
Network Information Flow

Fundamenta Informaticae - SPECIAL ISSUE ON CONCURRENCY SPECIFICATION AND PROGRAMMING (CS&P 2005) Ruciane-Nide, Poland, 28-30 September 2005
Intransitive noninterference in nondeterministic systems

Proceedings of the 2012 ACM conference on Computer and communications security
Informational Analysis of Security and Integrity

Fundamenta Informaticae - Concurrency Specification and Programming CS&P
Quantification of Positive and Negative Attacker's Information

Fundamenta Informaticae - Concurrency Specification and Programming CS&P

Quantified Score

Hi-index	0.00

Visualization

Abstract

We study a security property for processes in dynamic contexts, i.e., contexts that can be reconfigured at run-time. The security property that we propose in this paper, named Persistent BNDC, is such that a process is "secure" when every state reachable from it satisfies a basicNon-Interference property. We define a suitable bisimulation based equivalence relation among processes, that allows us to express the new property as a single equivalence check, thus avoiding the universal quantifications over all the reachable states (required by Persistent BNDC) and over all the possible hostile environments (implicit in the basic Non-Interference property we adopt). We show that the novel security property is compositional and we discusshow it can be efficiently checked.