Automatic Discovery and Quantification of Information Leaks

Backes, Michael; Köpf, Boris; Rybalchenko, Andrey

doi:10.1109/sp.2009.18

Cited by 179 publications

(228 citation statements)

References 41 publications

Supporting

Mentioning

228

Contrasting

Order By: Relevance

“…A highly desirable outcome of this effort would be the automatic checking of enforcement via either model checking or program analysis. So far, the efforts have lead to some notable progress for simple imperative languages [13,21,20,4,10]. By contrast, progress for process algebras has been notably slower.…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

A semiring-based trace semantics for processes with applications to information leakage analysis

Boreale¹,

Clark²,

Gorla³

2014

Math. Struct. Comp. Sci.

View full text Add to dashboard Cite

Abstract. We propose a framework for reasoning about program security building on language-theoretic and coalgebraic concepts. The behaviour of a system is viewed as a mapping from traces of high (unobservable) events to low (observable) events: the less the degree of dependency of low events on high traces, the more secure the system. We take the abstract view that low events are drawn from a generic semiring, where they can be combined using product and sum operations; throughout the paper, we provide instances of this framework, obtained by concrete instantiations of the underlying semiring. We specify systems via a simple process calculus, whose semantics is given as the unique homomorphism from the calculus into the set of behaviours, i.e. formal power series, seen as a final coalgebra. We provide a compositional semantics for the calculus in terms of rational operators on formal power series and show that the final and the compositional semantics coincide.

show abstract

Section: Discussionmentioning

confidence: 99%

“…where the first equality comes from the definition of the operational semantics and the last two ones are due to Proposition 3 (4,5). Similarly, (∆ 2 f ) h = (∆ 2 ) h f .…”

Section: We Prove Thatmentioning

confidence: 99%

A semiring-based trace semantics for processes with applications to information leakage analysis

Boreale¹,

Clark²,

Gorla³

2014

Math. Struct. Comp. Sci.

View full text Add to dashboard Cite

show abstract

“…Information leakage in deterministic programs has been investigated previously (e.g., [4], [5], [6], [7], [8]). While related to our work, much of this previous research does not directly investigate the detection of information leaks in probabilistic programs.…”

Section: A Related Workmentioning

confidence: 99%

Probabilistic Point-to-Point Information Leakage

Chothia

Kawamoto

Novakovic

et al. 2013

2013 IEEE 26th Computer Security Foundations Symposium

View full text Add to dashboard Cite

Abstract-The outputs of a program that processes secret data may reveal information about the values of these secrets. This paper develops an information leakage model that can measure the leakage between arbitrary points in a probabilistic program. Our aim is to create a model of information leakage that makes it convenient to measure specific leaks, and provide a tool that may be used to investigate a program's information security. To make our leakage model precise, we base our work on a simple probabilistic, imperative language in which secret values may be specified at any point in the program; other points in the program may then be marked as potential sites of information leakage. We extend our leakage model to address both nonterminating programs (with potentially infinite numbers of secret and observable values) and user input. Finally, we show how statistical approximation techniques can be used to estimate our leakage measure in real-world Java programs.

show abstract

“…The theory is preliminarily extended to multi-threaded programs [13]. Recently an automatic method for information flow analysis is developed in [18]. Lowe's work [19] defined quantitative channel capacity in the context of CSP.…”

Section: Related Workmentioning

confidence: 99%

The Optimum Leakage Principle for Analyzing Multi-threaded Programs

Chen

Malacaria

2010

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Bellman's optimality principle is a method for solving problems where one needs to find best decisions one after another. The principle can be extended to assess the information leakage in multi-threaded programs, and is formalized into the optimum leakage principle hereby proposed in this paper. By modeling the state transitions in multithreaded programs, the principle is combined with information theory to assess the leakage in multi-threaded programs, as the result of an optimal policy. This offers a new perspective to measure the information leakage and enables to track the leakage at run-time. Examples are given to demonstrate the analysis process. Finally, efficient implementation of this methodology is also briefly discussed.

show abstract

Automatic Discovery and Quantification of Information Leaks

Cited by 179 publications

References 41 publications

A semiring-based trace semantics for processes with applications to information leakage analysis

A semiring-based trace semantics for processes with applications to information leakage analysis

Probabilistic Point-to-Point Information Leakage

The Optimum Leakage Principle for Analyzing Multi-threaded Programs

Contact Info

Product

Resources

About