chapter

A Policy Model for Secure Information Flow

Authors:
Adedayo O. Adetoye

School of Systems Engineering, University of Reading, Whiteknights, Berkshire, UK RG6 6AY

School of Systems Engineering, University of Reading, Whiteknights, Berkshire, UK RG6 6AY
View Profile

,
Atta Badii

School of Systems Engineering, University of Reading, Whiteknights, Berkshire, UK RG6 6AY

School of Systems Engineering, University of Reading, Whiteknights, Berkshire, UK RG6 6AY
View Profile

Foundations and Applications of Security Analysis: Joint Workshop on Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security, ARSPA-WITS 2009, York, UK, March 28-29, 2009, Revised Selected PapersAugust 2009Pages 1–17https://doi.org/10.1007/978-3-642-03459-6_1

Published:30 August 2009Publication History

Foundations and Applications of Security Analysis: Joint Workshop on Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security, ARSPA-WITS 2009, York, UK, March 28-29, 2009, Revised Selected Papers

Pages 1–17

ABSTRACT

When a computer program requires legitimate access to confidential data, the question arises whether such a program may illegally reveal sensitive information. This paper proposes a policy model to specify what information flow is permitted in a computational system. The security definition, which is based on a general notion of information lattices, allows various representations of information to be used in the enforcement of secure information flow in deterministic or nondeterministic systems. A flexible semantics-based analysis technique is presented, which uses the input-output relational model induced by an attacker's observational power, to compute the information released by the computational system. An illustrative attacker model demonstrates the use of the technique to develop a termination-sensitive analysis. The technique allows the development of various information flow analyses, parametrised by the attacker's observational power, which can be used to enforce what declassification policies.

Index Terms

A Policy Model for Secure Information Flow
1. Security and privacy
  1. Systems security
    1. Operating systems security

Index terms have been assigned to the content through auto-classification.

Recommendations

Timing- and Termination-Sensitive Secure Information Flow: Exploring a New Approach
SP '11: Proceedings of the 2011 IEEE Symposium on Security and Privacy

Secure information flow guarantees the secrecy and integrity of data, preventing an attacker from learning secret information (secrecy) or injecting untrusted information (integrity). Covert channels can be used to subvert these security guarantees, for ...
Read More
Policy management in secure group communication
Read More
Nonmalleable Information Flow Control
CCS '17: Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security

Noninterference is a popular semantic security condition because it offers strong end-to-end guarantees, it is inherently compositional, and it can be enforced using a simple security type system. Unfortunately, it is too restrictive for real systems. ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
Foundations and Applications of Security Analysis: Joint Workshop on Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security, ARSPA-WITS 2009, York, UK, March 28-29, 2009, Revised Selected Papers
August 2009
221 pages
ISBN:9783642034589
Editors:
Pierpaolo Degano
Dipartimento di Informatica, Università di Pisa, Pisa, Italy 56127
,
Luca Viganò
Dipartimento di Informatica, Università di Verona, Verona, Italy 37134
Copyright © Springer-Verlag Berlin Heidelberg
Sponsors
In-Cooperation
Publisher
Springer-Verlag
Berlin, Heidelberg
Publication History
- Published: 30 August 2009
Qualifiers
- chapter
Conference
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 0
  Total Citations
  View Citations
- 0
  Total Downloads
- Downloads (Last 12 months)0
- Downloads (Last 6 weeks)0
Other Metrics
View Author Metrics
Cited By
This publication has not been cited yet

A Policy Model for Secure Information Flow

Foundations and Applications of Security Analysis: Joint Workshop on Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security, ARSPA-WITS 2009, York, UK, March 28-29, 2009, Revised Selected Papers

ABSTRACT

Cited By

Index Terms

Recommendations

Timing- and Termination-Sensitive Secure Information Flow: Exploring a New Approach

Policy management in secure group communication

Nonmalleable Information Flow Control

Comments

Login options

Full Access

Published in

Sponsors

In-Cooperation

Publisher

Publication History

Qualifiers

Conference

Funding Sources

Other Metrics

Article Metrics

Other Metrics

Cited By

Digital Edition

Caption

A Policy Model for Secure Information Flow

Foundations and Applications of Security Analysis: Joint Workshop on Automated Reasoning for Security Protocol Analysis and Issues in the Theory of Security, ARSPA-WITS 2009, York, UK, March 28-29, 2009, Revised Selected Papers

ABSTRACT

Cited By

Index Terms

Recommendations

Timing- and Termination-Sensitive Secure Information Flow: Exploring a New Approach

Policy management in secure group communication

Nonmalleable Information Flow Control

Comments

Login options

Full Access

Published in

Sponsors

In-Cooperation

Publisher

Publication History

Qualifiers

Conference

Funding Sources

Article Metrics

Other Metrics

Digital Edition

Share this Publication link

Share on Social Media