Sciweavers

Share
IANDC
2008

Information flow security in Boundary Ambients

11 years 1 months ago
Information flow security in Boundary Ambients
A variant of the Mobile Ambient calculus, called Boundary Ambients, is introduced, supporting the modelling of multi-level security policies. Ambients that may guarantee to properly protect their content are explicitly identified as boundaries: a boundary can be seen as a resource access manager for confidential data. In this setting, absence of direct information leakage is granted as soon as the initial process satisfies some syntactic conditions. We then give a new notion of non-interference for Boundary Ambients aiming at capturing indirect flows, too. We design a Control Flow Analysis that computes an over-approximation of all ambients that may be affected at run-time by high-level data and we show that this static analysis can be used to enforce non-interference, i.e., to statically detect that no (direct or indirect) information leakage is ever possible at run-time.
Chiara Braghin, Agostino Cortesi, Riccardo Focardi
Added 10 Dec 2010
Updated 10 Dec 2010
Type Journal
Year 2008
Where IANDC
Authors Chiara Braghin, Agostino Cortesi, Riccardo Focardi
Comments (0)
books