Checking security policies through an enhanced control flow analysis

Authors:
Chiara Bodei;Pierpaolo Degano;Corrado Priami
Affiliations:
Dipartimento di Informatica, Università di Pisa, Via F. Buonarroti 2, I-56127 Pisa, Italy;Dipartimento di Informatica, Università di Pisa, Via F. Buonarroti 2, I-56127 Pisa, Italy;Dipartimento di Informatica e Telecomunicazioni, Università di Trento, Via Sommarive, 1438050 Povo (TN), Italy
Venue:
Journal of Computer Security - Special issue on WITS'03
Year:
2005

Citing 13
Cited 2

A calculus of mobile processes, I

Information and Computation
Types for mobile ambients

Proceedings of the 26th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
A calculus for cryptographic protocols

Information and Computation
Names fo the &pgr;-calculus agents handled locally

Theoretical Computer Science - Special issues on models and paradigms for concurrency
Enhanced operational semantics: a tool for describing and analyzing concurrent systems

ACM Computing Surveys (CSUR)
Resource access control in systems of mobile agents

Information and Computation
PI-Calculus: A Theory of Mobile Processes

PI-Calculus: A Theory of Mobile Processes
Validating firewalls using flow logics

Theoretical Computer Science
Flow logic for Dolev-Yao secrecy in cryptographic processes

Future Generation Computer Systems - Parallel computing technologies (PaCT-2001)
Confidentiality Analysis of Mobile Systems

SAS '00 Proceedings of the 7th International Symposium on Static Analysis
Mobile Ambients

FoSSaCS '98 Proceedings of the First International Conference on Foundations of Software Science and Computation Structure
Types and Effects for Asymmetric Cryptographic Protocols

CSFW '02 Proceedings of the 15th IEEE workshop on Computer Security Foundations
Typing correspondence assertions for communication protocols

Theoretical Computer Science

Flow Logic for Process Calculi

ACM Computing Surveys (CSUR)
Control Flow Analysis of Generalised Boolean Networks

Electronic Notes in Theoretical Computer Science (ENTCS)

Quantified Score

Hi-index	0.00

Visualization

Abstract

We introduce a Control Flow Analysis that statically approximates the dynamic behavior of mobile processes, expressed in (a variant of) the π-calculus. Our analysis of a system is able to describe the essential behaviour of each sub-system, tracking where and between which sub-processes communications may occur. This means that we can safely approximate the behaviour of a system plugged in a larger and mainly unknown context, without explicitly analysing it. Several possible properties can be investigated using this approximation, among which some related to confidentiality and to access control policies.