Non-interference with What-Declassification in Component-Based Systems

Greiner, Simon; Grahl, Daniel

doi:10.1109/csf.2016.25

Cited by 10 publications

(8 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We believe the future of information flow security verification will see an increased cooperation between fully automatic tools and proof assistants; the former being employed for wide-covering lightweight properties and the latter being employed more sparingly, for heavier properties of clearly isolated relatively small cores of systems. Compositionality results for information flow security [6,28,30,48,59] will play a key role in achieving such a cooperation on a well-understood semantic basis.…”

Section: Automatic Analysis Of Information Flowmentioning

confidence: 99%

CoCon: A Conference Management System with Formally Verified Document Confidentiality

2020

View full text Add to dashboard Cite

We present a case study in formally verified security for realistic systems: the information flow security verification of the functional kernel of a web application, the CoCon conference management system. We use the Isabelle theorem prover to specify and verify fine-grained confidentiality properties, as well as complementary safety and "traceback" properties. The challenges posed by this development in terms of expressiveness have led to bounded-deducibility security, a novel security model and verification method generally applicable to systems describable as input/output automata.

show abstract

Section: Automatic Analysis Of Information Flowmentioning

confidence: 99%

CoCon: A Conference Management System with Formally Verified Document Confidentiality

2020

View full text Add to dashboard Cite

show abstract

“…In [48], a security property and a security type system are developed for a concurrent language with asynchronous message-passing communication, with support for compositional reasoning under arbitrary environments of systems. In [19], compositional reasoning techniques are developed for the information-flow security of component-based systems where the components communicate via synchronous message-passing. The potential environments of each component is explicitly considered in secure composition.…”

Section: Information-flow Security For Message-passing Systemsmentioning

confidence: 99%

Enforcing globally dependent flow policies in message-passing systems

Nielson

2019

Journal of Computer Languages

View full text Add to dashboard Cite

 Users may download and print one copy of any publication from the public portal for the purpose of private study or research.  You may not further distribute the material or use it for any profit-making activity or commercial gain  You may freely distribute the URL identifying the publication in the public portal If you believe that this document breaches copyright please contact us providing details, and we will remove access to the work immediately and investigate your claim.

show abstract

“…In the remainder of this work we take the formalization of components from Greiner and Grahl [1] and reuse their notation for better comparability of further results in this paper.…”

Section: Components and Component Fault Treesmentioning

confidence: 99%