@inbook{e38ba794a3584f058f81474298fc361f,
title = "Lightweight information flow",
abstract = "We develop a type system for identifying the information flow between variables in a program in the Guarded Commands language. First we characterise the types of information flow that may arise between variables in a non-deterministic program: explicit, implicit, bypassing, correlated or sanitised. Next we allow to specify security policies in a number of traditional ways based on mandatory access control: defining a security lattice, working with components or decentralised labels, both as pertains to confidentiality and integrity. Offending information flows are those identified by the type system and that violate the security policy; a program is sufficiently secure if it contains only acceptable information flows.",
author = "Flemming Nielson and Nielson, {Hanne Riis}",
year = "2019",
month = jan,
day = "1",
doi = "10.1007/978-3-030-21485-2_25",
language = "English",
isbn = "978-3-030-21484-5",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer",
pages = "455--470",
booktitle = "Models, Languages, and Tools for Concurrent and Distributed Programming",
}