Automatic Covert Channel Analysis of a Multilevel Secure Component

13 years 10 months ago

Download www.di.unipi.it

Abstract. The NRL Pump protocol deﬁnes a multilevel secure component whose goal is to minimize leaks of information from high level systems to lower level systems, without degrading average time performances. We deﬁne a probabilistic model for the NRL Pump and show how a probabilistic model checker (FHP-murϕ) can be used to estimate the capacity of a probabilistic covert channel in the NRL Pump. We are able to compute the probability of a security violation as a function of time for various conﬁgurations of the system parameters (e.g. buﬀer sizes, moving average size, etc). Because of the model complexity, our results cannot be obtained using an analytical approach and, because of the low probabilities involved, it can be hard to obtain them using a simulator.

Ruggero Lanotte, Andrea Maggiolo-Schettini, Simone

Real-time Traffic

ICICS 2004 | NRL Pump | NRL Pump Protocol | Probabilistic Model |

claim paper

» Time and ProbabilityBased Information Flow Analysis

» A Classification of Time andor Probability Dependent Security Properties

» Sidebuster automated detection and quantification of sidechannel leaks in web application ...

Post Info
More Details (n/a)

Added	01 Jul 2010
Updated	01 Jul 2010
Type	Conference
Year	2004
Where	ICICS
Authors	Ruggero Lanotte, Andrea Maggiolo-Schettini, Simone Tini, Angelo Troina, Enrico Tronci

Comments (0)

Sciweavers

Automatic Covert Channel Analysis of a Multilevel Secure Component

ICICS 2004 | NRL Pump | NRL Pump Protocol | Probabilistic Model |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers