Enforcing Generalized Refinement-Based Noninterference for Secure Interface Composition
作者: Cong Sun , Ning Xi , Jianfeng Ma
关键词:
摘要: Information flow security has been considered as a critical requirement on complicated component-based software. The recent efforts the compositional information analyses were limited expressiveness of lattice and efficiency enforcement. Extending these approaches to support more general lattices is usually nontrivial because compositionality properties should be properly treated. In this work, we present new extension interface automaton. On structure, propose two refinement-based properties, adaptable any finite lattice. For each property, prove condition that ensures property preserved under composition. Furthermore, implement refinement algorithms decision procedure. We demonstrate usability our approach with in-depth case studies. evaluation results show enforcement can effectively reduce verification cost compared global composite system.
sci-hub.se 参考文章(29)
Gilles Benattar, Franck Cassez, Didier Lime, Olivier H. Roux, Synthesis of Non-Interferent Timed Systems formal modeling and analysis of timed systems. ,vol. 5813, pp. 28- 42 ,(2009) , 10.1007/978-3-642-04368-0_5
Rajeev Alur, Thomas A. Henzinger, Orna Kupferman, Moshe Y. Vardi, Alternating Refinement Relations international conference on concurrency theory. pp. 163- 178 ,(1998) , 10.1007/BFB0055622
Torben Amtoft, John Hatcliff, Edwin Rodríguez, Robby, Jonathan Hoag, David Greve, Specification and Checking of Software Contracts for Conditional Information Flow Lecture Notes in Computer Science. pp. 229- 245 ,(2008) , 10.1007/978-3-540-68237-0_17
Luca de Alfaro, Thomas A. Henzinger, Interface Theories for Component-Based Design embedded software. pp. 148- 165 ,(2001) , 10.1007/3-540-45449-7_11
Rayna Dimitrova, Bernd Finkbeiner, Máté Kovács, Markus N. Rabe, Helmut Seidl, Model checking information flow in reactive systems verification, model checking and abstract interpretation. pp. 169- 185 ,(2012) , 10.1007/978-3-642-27940-9_12
Luca Alfaro, Thomas A. Henzinger, INTERFACE-BASED DESIGN Springer, Dordrecht. pp. 83- 104 ,(2004) , 10.1007/1-4020-3532-2_3
Linyuan Liu, Haibin Zhu, Zhiqiu Huang, Analysis of the minimal privacy disclosure for web services collaborations with role mechanisms Expert Systems With Applications. ,vol. 38, pp. 4540- 4549 ,(2011) , 10.1016/J.ESWA.2010.09.128
J. A. Goguen, J. Meseguer, Security Policies and Security Models ieee symposium on security and privacy. pp. 11- 11 ,(1982) , 10.1109/SP.1982.10014
Takoua Abdellatif, Lilia Sfaxi, Riadh Robbana, Yassine Lakhnech, None, Automating information flow control in component-based distributed systems Proceedings of the 14th international ACM Sigsoft symposium on Component based software engineering - CBSE '11. pp. 73- 82 ,(2011) , 10.1145/2000229.2000241
Rajeev Motwani, John E. Hopcroft, Jeffrey D. Ullman, Rotwani, Introduction to Automata Theory, Languages, and Computation ,(1979)