Lightweight information flow

Flemming Nielson*, Hanne Riis Nielson

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingBook chapterResearchpeer-review

Abstract

We develop a type system for identifying the information flow between variables in a program in the Guarded Commands language. First we characterise the types of information flow that may arise between variables in a non-deterministic program: explicit, implicit, bypassing, correlated or sanitised. Next we allow to specify security policies in a number of traditional ways based on mandatory access control: defining a security lattice, working with components or decentralised labels, both as pertains to confidentiality and integrity. Offending information flows are those identified by the type system and that violate the security policy; a program is sufficiently secure if it contains only acceptable information flows.

Original languageEnglish
Title of host publicationModels, Languages, and Tools for Concurrent and Distributed Programming
PublisherSpringer
Publication date1 Jan 2019
Pages455-470
ISBN (Print)978-3-030-21484-5
DOIs
Publication statusPublished - 1 Jan 2019
SeriesLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume11665 LNCS
ISSN0302-9743

Cite this

Nielson, F., & Nielson, H. R. (2019). Lightweight information flow. In Models, Languages, and Tools for Concurrent and Distributed Programming (pp. 455-470). Springer. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), Vol.. 11665 LNCS https://doi.org/10.1007/978-3-030-21485-2_25
Nielson, Flemming ; Nielson, Hanne Riis. / Lightweight information flow. Models, Languages, and Tools for Concurrent and Distributed Programming. Springer, 2019. pp. 455-470 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), Vol. 11665 LNCS).
@inbook{e38ba794a3584f058f81474298fc361f,
title = "Lightweight information flow",
abstract = "We develop a type system for identifying the information flow between variables in a program in the Guarded Commands language. First we characterise the types of information flow that may arise between variables in a non-deterministic program: explicit, implicit, bypassing, correlated or sanitised. Next we allow to specify security policies in a number of traditional ways based on mandatory access control: defining a security lattice, working with components or decentralised labels, both as pertains to confidentiality and integrity. Offending information flows are those identified by the type system and that violate the security policy; a program is sufficiently secure if it contains only acceptable information flows.",
author = "Flemming Nielson and Nielson, {Hanne Riis}",
year = "2019",
month = "1",
day = "1",
doi = "10.1007/978-3-030-21485-2_25",
language = "English",
isbn = "978-3-030-21484-5",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer",
pages = "455--470",
booktitle = "Models, Languages, and Tools for Concurrent and Distributed Programming",

}

Nielson, F & Nielson, HR 2019, Lightweight information flow. in Models, Languages, and Tools for Concurrent and Distributed Programming. Springer, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 11665 LNCS, pp. 455-470. https://doi.org/10.1007/978-3-030-21485-2_25

Lightweight information flow. / Nielson, Flemming; Nielson, Hanne Riis.

Models, Languages, and Tools for Concurrent and Distributed Programming. Springer, 2019. p. 455-470 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), Vol. 11665 LNCS).

Research output: Chapter in Book/Report/Conference proceedingBook chapterResearchpeer-review

TY - CHAP

T1 - Lightweight information flow

AU - Nielson, Flemming

AU - Nielson, Hanne Riis

PY - 2019/1/1

Y1 - 2019/1/1

N2 - We develop a type system for identifying the information flow between variables in a program in the Guarded Commands language. First we characterise the types of information flow that may arise between variables in a non-deterministic program: explicit, implicit, bypassing, correlated or sanitised. Next we allow to specify security policies in a number of traditional ways based on mandatory access control: defining a security lattice, working with components or decentralised labels, both as pertains to confidentiality and integrity. Offending information flows are those identified by the type system and that violate the security policy; a program is sufficiently secure if it contains only acceptable information flows.

AB - We develop a type system for identifying the information flow between variables in a program in the Guarded Commands language. First we characterise the types of information flow that may arise between variables in a non-deterministic program: explicit, implicit, bypassing, correlated or sanitised. Next we allow to specify security policies in a number of traditional ways based on mandatory access control: defining a security lattice, working with components or decentralised labels, both as pertains to confidentiality and integrity. Offending information flows are those identified by the type system and that violate the security policy; a program is sufficiently secure if it contains only acceptable information flows.

U2 - 10.1007/978-3-030-21485-2_25

DO - 10.1007/978-3-030-21485-2_25

M3 - Book chapter

AN - SCOPUS:85068818443

SN - 978-3-030-21484-5

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 455

EP - 470

BT - Models, Languages, and Tools for Concurrent and Distributed Programming

PB - Springer

ER -

Nielson F, Nielson HR. Lightweight information flow. In Models, Languages, and Tools for Concurrent and Distributed Programming. Springer. 2019. p. 455-470. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), Vol. 11665 LNCS). https://doi.org/10.1007/978-3-030-21485-2_25