Time and Probability-Based Information Flow Analysis

Lanotte, Ruggero; Maggiolo-Schettini, Andrea; Troina, Angelo

doi:10.1109/tse.2010.4

Cited by 12 publications

(8 citation statements)

References 41 publications

(92 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Regarding our discussion of the lack of compositionality in Sect. 2, it is fair to say that non-interference often just deals with the program in isolation whereas more complex considerations (such as non-deducibility on computation [33]) are required to regain some compositionality.…”

Section: Security Assurances: Information Leakagementioning

confidence: 99%

Static Analysis for Proactive Security

Huth

Nielson

2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

We reflect on current problems and practices in system security, distinguishing between reactive security -which deals with vulnerabilities as they are being exploited -and proactive security -which means to make vulnerabilities un-exploitable by removing them from a system entirely. Then we argue that static analysis is well poised to support approaches to proactive security, since it is sufficiently expressive to represent many vulnerabilities yet sufficiently efficient to detect vulnerabilities prior to system deployment. We further show that static analysis interacts well with both confidentiality and integrity aspects and discuss what security assurances it can attain. Next we argue that security models such as those for access control can also be statically analyzed to support proactive security of such models. Finally, we identify research problems in static analysis whose solutions would stand to improve the effectiveness and adoption of static analysis for proactive security in the practice of designing, implementing, and assuring future ICT systems.

show abstract

Section: Security Assurances: Information Leakagementioning

confidence: 99%

Static Analysis for Proactive Security

Huth

Nielson

2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…Their notion of security is expressed as a non-interference property and it depends on a natural number m, representing a minimum delay between high-level actions such that the low-level behaviors are not affected by the high-level ones. The authors of [17] define a notion of timed non-interference based on bisimulations for probabilistic timed automata which again have high-level (secret) and low-level (public) actions. A somewhat different approach is taken in [12] that studies the synthesis of controllers.…”

Section: Contributionmentioning

confidence: 99%

Secure Information Release in Timed Automata

Vasilikos

Nielson

2018

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract.One of the key demands of cyberphysical systems is that they meet their safety goals. Timed automata has established itself as a formalism for modeling and analyzing the real-time safety aspects of cyberphysical systems. Increasingly it is also demanded that cyberphysical systems meet a number of security goals for confidentiality and integrity. Notions of security based on Information flow control, such as non-interference, provide strong guarantees that no information is leaked; however, many cyberphysical systems leak intentionally some information in order to achieve their purposes.In this paper, we develop a formal approach of information flow for timed automata that allows intentional information leaks. The security of a timed automaton is then defined using a bisimulation relation that takes account of the non-determinism and the clocks of timed automata. Finally, we define an algorithm that traverses a timed automaton and imposes information flow constraints on it and we prove that our algorithm is sound with respect to our security notion.

show abstract

“…The changes of these resource properties are in certain regular patterns. An error-corrected four states automata is designed to model the patterns [51,52].…”

Section: Covert Channel Modelingmentioning

confidence: 99%

C2Hunter: Detection and Mitigation of Covert Channels in Data Centers

Guan

et al. 2015

Handbook on Data Centers

View full text Add to dashboard Cite

Time and Probability-Based Information Flow Analysis

Cited by 12 publications

References 41 publications

Static Analysis for Proactive Security

Static Analysis for Proactive Security

Secure Information Release in Timed Automata

C2Hunter: Detection and Mitigation of Covert Channels in Data Centers

Contact Info

Product

Resources

About