Static Analysis of Processes for No Read-Up and No Write-Down

Static Analysis of Processes for No Read-Up and No Write-Down (1999)

Cached

Download Links

by Chiara Bodei , Pierpaolo Degano , Flemming Nielson , Hanne Riis Nielson

Venue:	In Proc. FOSSACS'99, number 1578 in Lecture
Citations:	26 - 5 self

BibTeX

@INPROCEEDINGS{Bodei99staticanalysis,
    author = {Chiara Bodei and Pierpaolo Degano and Flemming Nielson and Hanne Riis Nielson},
    title = {Static Analysis of Processes for No Read-Up and No Write-Down},
    booktitle = {In Proc. FOSSACS'99, number 1578 in Lecture},
    year = {1999},
    pages = {120--134},
    publisher = {Springer-Verlag}
}

Years of Citing Articles

Bookmark

OpenURL

Abstract

We study a variant of the no read-up/no write-down security property of Bell and LaPadula for processes in the -calculus. Once processes are given levels of security clearance, we statically check that a process at a high level never sends names to processes at a lower level. The static check is based on a Control Flow Analysis for the -calculus that establishes a super-set of the set of names to which a given name may be bound and of the set of names that may be sent and received along a given channel, taking into account its directionality. The static check is shown to imply the natural dynamic condition.

Citations

1023	The Java Virtual Machine Specification - Lindholm, Yellin - 1996
1016	Proof-carrying code - Necula - 1997
933	A calculus of mobile processes - Milner, Parrow, et al. - 1992
619	Security policies and security models - Goguen, Meseguer - 1982
544	Systematic design of program analysis frameworks - COUSOT, COUSOT - 1979
515	Secure computer system: unified exposition and MULTICS interpretation - Bell, LaPadula - 1976
462	Cryptographyand Data Security - Denning - 1982
345	A sound type system for secure flow analysis - Volpano, Irvine, et al. - 1996
229	Typing and subtyping for mobile processes - Pierce, Sangiorgi - 1996
221	Secrecy by typing in security protocols - Abadi - 1999
214	The slam calculus: Programming with secrecy and integrity - Heintze, Riecke - 1998
181	Secure information flow in a multi-threaded imperative language - Smith, Volpano - 1998
174	Resource access control in systems of mobile agents - Hennessy - 2002
142	Types for Mobile Ambients - Cardelli, Gordon - 1999
133	Formal Models for Computer Security - Landwehr - 1981
113	An asynchronous model of locality, failure, and process mobility - Amadio - 1997
105	Specification for Multi-Level Security and a Hook-Up Property - McCullough - 1987
98	Modal logics for mobile processes - Milner, Parrow, et al. - 1991
82	Noninterference and the composability of security properties - McCullough - 1988
75	A typed language for distributed mobile processes (extended abstract - Riely, Hennessy - 1998
70	The Compositional Security Checker: A Tool for the Verification of Information Flow Security Properties - Focardi, Gorrieri - 1997
67	Protection in programming-language translations - Abadi - 1998
59	Global/local subtyping and capability inference for a distributed pi-calculus - Sewell - 1998
49	The Java Virtual Machine Speci - Lindholm, Yellin - 1999
44	Implicit typing à la ML for the joincalculus - Fournet, Maranget, et al. - 1997
35	Coordinating Mobile Agents via Blackboards and Access Rights - Nicola, Ferrari, et al. - 1997
23	Secure information in a multi-threaded imperative language - Smith, Volpano - 1998
19	Secure computer systems: Uni exposition and Multics interpretation - Bell, LaPadula - 1976
19	The Compositional Security Checker: A tool for the Veri of Information Flow Security Properties - Focardi, Gorrieri - 1997
19	Control Flow Analysis for the -calculus - Bodei, Degano, et al. - 1998
17	A Sound type system for secure analysis - Volpano, Smith, et al. - 1996
13	Proving trust in systems of second-order processes - Dam - 1998
13	Automatic determination of communication topologies in mobile systems - Venet - 1998
13	Comparing two information flow security properties - Focardi - 1996
5	Control analysis for the -calculus - Bodei, Degano, et al. - 1998
4	Abstract interpretation of the -calculus - Venet - 1997
2	Comparing two information security properties - Focardi - 1996