[0bfa2c]: web / entries / Strong_Security.shtml  Maximize  Restore  History

Download this file

134 lines (115 with data), 4.5 kB

<!DOCTYPE public "-//w3c//dtd html 4.01 transitional//en"
  <title>Archive of Formal Proofs</title>
  <link rel="stylesheet" type="text/css" href="../front.css">
  <script src="../jquery.min.js"></script>
  <script src="../script.js"></script>
  <link rel="icon" href="../images/favicon.ico" type="image/icon">
  <meta http-equiv="Content-Type" content="text/html; charset=utf-8">

<table width="100%">
      <td width="20%" align="center" valign="top">
      <!-- navigation -->
      <!--#include file="nav.html"-->
      <td width="80%" valign="top">
      <!-- content -->

<div align="center">

<h1><font class="first">A</font>
<font class="first">F</font>ormalization
<font class="first">S</font>trong
<font class="first">S</font>ecurity
<table width="80%" class="data">
    <tr><td class="datahead" width="20%">Title:</td>
        <td class="data" width="80%">A Formalization of Strong Security</td></tr>

    <tr><td class="datahead">Author:</td>
        <td class="data">Sylvia Grewe (grewe /at/ mais /dot/ informatik /dot/ tu-darmstadt /dot/ de), Alexander Lux (lux /at/ mais /dot/ informatik /dot/ tu-darmstadt /dot/ de), Heiko Mantel (mantel /at/ mais /dot/ informatik /dot/ tu-darmstadt /dot/ de) and Jens Sauer (sauer /at/ mais /dot/ informatik /dot/ tu-darmstadt /dot/ de)</td></tr>

    <tr><td class="datahead">Submission date:</td>
        <td class="data">2014-04-23</td></tr>

    <tr><td class="datahead" valign="top">Abstract:</td>
        <td class="abstract">

Research in information-flow security aims at developing methods to
identify undesired information leaks within programs from private
sources to public sinks. Noninterference captures this
intuition. Strong security from Sabelfeld and Sands
formalizes noninterference for concurrent systems.
We present an Isabelle/HOL formalization of strong security for
arbitrary security lattices (Sabelfeld and Sands use
a two-element security lattice in the original publication).
The formalization includes
compositionality proofs for strong security and a soundness proof
for a security type system that checks strong security for programs
in a simple while language with dynamic thread creation.
Our formalization of the security type system is abstract in the
language for expressions and in the semantic side conditions for
expressions. It can easily be instantiated with different syntactic
approximations for these side conditions. The soundness proof of
such an instantiation boils down to showing that these syntactic
approximations imply the semantic side conditions.

    <tr><td class="datahead" valign="top">BibTeX:</td>
        <td class="formatted">
  author  = {Sylvia Grewe and Alexander Lux and Heiko Mantel and Jens Sauer},
  title   = {A Formalization of Strong Security},
  journal = {Archive of Formal Proofs},
  month   = apr,
  year    = 2014,
  note    = {\url{http://afp.sf.net/entries/Strong_Security.shtml},
            Formal proof development},
  ISSN    = {2150-914x},

    <tr><td class="datahead">License:</td>
        <td class="data"><a href="http://afp.sourceforge.net/LICENSE">BSD License</a></td></tr>

<!--#set var="status" value="-STATUS-" -->
<!--#set var="version" value="-VERSION-" -->
<!--#set var="afp-version" value="-AFPVERSION-" -->
<!---INCLUDE- file="devel-warning.shtml"-->



<!--#set var="name" value="Strong_Security" -->
<!--#set var="binfo" value="../browser_info/current/AFP/${name}" -->

<!--#set var="doc" value="${binfo}/document.pdf" -->
<!--#set var="outline" value="${binfo}/outline.pdf" -->
<!--#set var="browse" value="${binfo}/index.html" -->
<!--#set var="tar" value="../release/afp-${name}-current.tar.gz" -->

<table class="links">
  <td class="links">
	<a href="<!--#echo var="outline" -->">Proof outline</a><br>
	<a href="<!--#echo var="doc" -->">Proof document</a>
	<!-- link to README.hmtl if no document exists -->	
  <td class="links">
	<a href="<!--#echo var="browse" -->">Browse theories</a>
  <td class="links"> 
	<a href="<!--#echo var="tar" -->">Download this entry</a>
    <tr><td class="links">Older releases:
None    </td></tr>
<!-- entry data end -->

</td> </tr> </table>


Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:

JavaScript is required for this form.

No, thanks