Security for Mobility

    Research output: Chapter in Book/Report/Conference proceedingBook chapterResearchpeer-review

    Abstract

    We show how to use static analysis to provide information about security issues related to mobility. First the syntax and semantics of Mobile Ambients is reviewed and we show how to obtain a so-called 0CFA analysis that can be implemented in polynomial time. Next we consider discretionary access control where we devise Discretionary Ambients, based on Safe Ambients, and we adapt the semantics and 0CFA analysis; to strengthen the analysis we incorporate context-sensitivity to obtain a 1CFA analysis. This paves the way for dealing with mandatory access control where we express both a Bell-LaPadula model for confidentiality as well as a Biba model for integrity. Finally, we use Boxed Ambients as a means for expressing cryptographic key exchange protocols and we adapt the operational semantics and the 0CFA analysis.
    Original languageEnglish
    Title of host publicationFoundations of Security Analysis and Design II - FOSAD 2001/2002 Tutorial Lectures
    PublisherSpringer
    Publication date2004
    Pages207-265
    ISBN (Print)3-540-20955-7
    Publication statusPublished - 2004

    Cite this

    Nielson, H. R., Nielson, F., & Buchholtz, M. (2004). Security for Mobility. In Foundations of Security Analysis and Design II - FOSAD 2001/2002 Tutorial Lectures (pp. 207-265). Springer. http://www.imm.dtu.dk/pubdb/p.php?2840