Formal Verification of Object-Oriented Software
 2012
DOI: 10.1007/978-3-642-31762-0_12
|View full text |Cite
|
Sign up to set email alerts
|

Scheduler-Specific Confidentiality for Multi-threaded Programs and Its Logic-Based Verification

Marieke Huisman
1
,
Tri Minh Ngo
2

Abstract: Abstract. Observational determinism has been proposed in the literature as a way to ensure confidentiality for multi-threaded programs. Intuitively, a program is observationally deterministic if the behavior of the public variables is deterministic, i.e., independent of the private variables and the scheduling policy. Several formal definitions of observational determinism exist, but all of them have shortcomings; for example they accept insecure programs or they reject too many innocuous programs. Besides, th… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
3
2

Citation Types

0
30
0

Year Published

2012
2012
2019
2019

Publication Types

Select...
5
1

Relationship

4
2

Authors

Journals

citations
Cited by 15 publications
(30 citation statements)
references
References 15 publications
0
30
0
Order By: Relevance
“…Existing confidentiality properties, such as noninterference [12] and observational determinism [30,15] are not suitable to ensure confidentiality for multi-threaded programs. They only consider input-output behavior, and ignore the role of schedulers, while multi-threaded programs allow all interactions between threads and intermediate results to be observed [30,15,14]. Thus, new methods have to be developed for an observational model where an attacker can access the full code of the program, observe the traces of public data, and limit the set of possible program traces by selecting a scheduler.…”
Section: Introductionmentioning
confidence: 99%
See 2 more Smart Citations

Confidentiality for Probabilistic Multi-threaded Programs and Its Verification

Ngo
1
,
Stoelinga
2
,
Huisman
3
2013
Lecture Notes in Computer Science
Self Cite
15
0
1
0
View full textAdd to dashboardCite
show abstract
“…Existing confidentiality properties, such as noninterference [12] and observational determinism [30,15] are not suitable to ensure confidentiality for multi-threaded programs. They only consider input-output behavior, and ignore the role of schedulers, while multi-threaded programs allow all interactions between threads and intermediate results to be observed [30,15,14]. Thus, new methods have to be developed for an observational model where an attacker can access the full code of the program, observe the traces of public data, and limit the set of possible program traces by selecting a scheduler.…”
Section: Introductionmentioning
confidence: 99%
“…Taking into account the effect of schedulers on confidentiality, we proposed a definition of scheduler-specific observational determinism (SSOD) for possibilistic multi-threaded programs [14]. Basically, a program respects SSOD if (SSOD-1) for any initial state, traces of each public variable are stuttering-equivalent, and (SSOD-2) for any two initial states I and I that are indistinguishable w.r.t.…”
Section: Introductionmentioning
confidence: 99%
See 1 more Smart Citation

Confidentiality for Probabilistic Multi-threaded Programs and Its Verification

Ngo
1
,
Stoelinga
2
,
Huisman
3
2013
Lecture Notes in Computer Science
Self Cite
15
0
1
0
View full textAdd to dashboardCite
show abstract
“…The definition of scheduler-specific observational determinism was first published in the proceedings of the 2011 International Conference on Formal Verification of Object-Oriented Software (FoVeOOS'11) (revised selected papers) [47] and also in a corresponding technical report (extended version) [46]. Later, this definition appeared in the Journal of Computer Security (JCS) (A special issue) [69].…”
Section: Origins Of the Chaptermentioning
confidence: 99%
“…This logic-based verification method was published in the proceedings of the 2011 International Conference on Formal Verification of Object-Oriented Software (FoVeOOS'11) (revised selected papers) [47], and also in a corresponding technical report (extended version) [46]. The top row indicates indexes of states.…”
Section: Organization Of the Chaptermentioning
confidence: 99%

Qualitative and quantitative information flow analysis for multi-threaded programs

Ngo1
Self Cite
6
0
6
0
View full textAdd to dashboardCite

Secure Information Flow Analysis Using the PRISM Model Checker

Noroozi
1
,
Salehi
2
,
Karimpour
3
et al. 2019
Information Systems Security
3
0
1
0
View full textAdd to dashboardCite
scite logo

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Product
Browser ExtensionAssistant by sciteCitation Statement SearchReference CheckVisualizationsDashboardsExplore JournalsExplore OrganizationsExplore FundersEmbedding BadgeEmbedding Citation SearchPricing
Resources
BlogHelp & FAQAccessibility StatementAPI TermsFor Universities & GovernmentsFor ResearchersFor PublishersFor Corporate, Pharma & EnterpriseAuthor MarketingBecome an AffiliateGet an organization trial or quotescite Data & Services
About
News & PressCareersRead our PaperCoverage

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

BlogTerms and ConditionsAPI TermsPrivacy PolicyContactCookie PreferencesDo Not Sell or Share My Personal Information

Copyright © 2024 scite LLC. All rights reserved.

Made with 💙 for researchers

Part of the Research Solutions Family.