Information-flow Interfaces and Security Lattices

Ezio Bartocci; Thomas A. Henzinger; Dejan Nickovic; Ana Oliveira da; Costa

arXiv:2406.14374·cs.FL·June 21, 2024

Information-flow Interfaces and Security Lattices

Ezio Bartocci, Thomas A. Henzinger, Dejan Nickovic, Ana Oliveira da, Costa

PDF

Open Access

TL;DR

This paper links the concept of security lattices to information-flow interfaces, providing a formal framework for specifying and refining system security requirements.

Contribution

It introduces a semantic interpretation of information-flow interfaces using security lattices, enhancing formal security specification methods.

Findings

01

Security lattices offer a natural semantics for information-flow interfaces.

02

The framework improves formal security requirement specification.

03

Provides a basis for refining security policies systematically.

Abstract

Information-flow interfaces is a formalism recently proposed for specifying, composing, and refining system-wide security requirements. In this work, we show how the widely used concept of security lattices provides a natural semantic interpretation for information-flow interfaces.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsSecurity and Verification in Computing · Advanced Memory and Neural Computing