Automaton-based Confidentiality Monitoring of Concurrent Programs
2007 (English)In: 20th IEEE Computer Security Foundations Symposium (CSFS20), Proceedings, 2007, 218-232 p.Conference paper (Refereed)
Noninterference is typically used as a baseline security policy to formalize confidentiality of secret information manipulated by a program. In contrast to static checking of noninterference, this paper considers dynamic, automaton-based, monitoring of information flow for a single execution of a concurrent program. The monitoring mechanism is based on a combination of dynamic and static analyses. During program execution, abstractions of program events are sent to the automaton, which uses the abstractions to track information flows and to control the execution by forbidding or editing dangerous actions. All monitored executions are proved to be noninterfering (soundness) and executions of programs that are well-typed in a security type system similar to the one of Smith and Volpano  are proved to be unaltered by the monitor (partial transparency).
Place, publisher, year, edition, pages
2007. 218-232 p.
Computer and Information Science
IdentifiersURN: urn:nbn:se:kth:diva-50688DOI: 10.1109/CSF.2007.10ISI: 000248485400015ISBN: 978-0-7695-2819-9OAI: oai:DiVA.org:kth-50688DiVA: diva2:462399
20th Computer Security Foundation Symposium (CSFS 20) Location: Venice, ITALY
QC 201112072011-12-072011-12-072011-12-07Bibliographically approved