Quantitative Information Flow for Scheduler-Dependent Systems
Yusuke Kawamoto, Thomas Given-Wilson
TL;DR
This paper investigates how different scheduling strategies in parallel systems affect information leakage, considering imperfect observers, and introduces an algorithm to minimize leakage through optimal scheduling.
Contribution
It introduces a novel analysis of scheduling effects on information leakage and provides an algorithm to minimize leakage considering various observer capabilities.
Findings
Scheduling can both hide and reveal leaked information.
Imperfect observers may perceive different leakage levels.
An algorithm for constructing leakage-minimizing schedulers is presented.
Abstract
Quantitative information flow analyses measure how much information on secrets is leaked by publicly observable outputs. One area of interest is to quantify and estimate the information leakage of composed systems. Prior work has focused on running disjoint component systems in parallel and reasoning about the leakage compositionally, but has not explored how the component systems are run in parallel or how the leakage of composed systems can be minimised. In this paper we consider the manner in which parallel systems can be combined or scheduled. This considers the effects of scheduling channels where resources may be shared, or whether the outputs may be incrementally observed. We also generalise the attacker's capability, of observing outputs of the system, to consider attackers who may be imperfect in their observations, e.g. when outputs may be confused with one another, or when…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsSecurity and Verification in Computing · Smart Grid Security and Resilience · Access Control and Trust