IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca

A multilevel security policy is considered in the scenario of mobile systems, and modeled within "pure" Mobile Ambients calculus, in which no communication channels are present and the only possible actions are represented by the moves performed by mobile processes. The information flow property of interest is defined in terms of the possibility for a confidential ambient/data to move outside a security boundary. In a previous paper, we gave a very simple syntactic property that is sufficient to imply the absence of unwanted information flows. In this paper, a control flow analysis is defined, as a refinement of the Hansen-Jensen-Nielsons's CFA, that allows to capture boundary crossings with better accuracy.

Control flow analysis of mobile ambients with security boundaries / C. Braghin, A. Cortesi, R. Focardi - In: Formal methods for open object-based distributed systems 5 : IFIP TC6/WG6.1 fifth International conference on formal methods for open object-based distributed systems (FMOODS 2002) : march 20-22, 2002, Enschede, The Netherlands / [a cura di] B. Jacobs, A. Rensink. - Boston : Kluwer, 2002. - ISBN 0792376838. - pp. 197-212 (( Intervento presentato al 5. convegno International Conference on Formal Methods for Open Object-Based Distributed Systems tenutosi a Enschede, Netherlands nel 2002.

Control flow analysis of mobile ambients with security boundaries

C. Braghin^Primo;A. Cortesi;R. Focardi

2002

Abstract

A multilevel security policy is considered in the scenario of mobile systems, and modeled within "pure" Mobile Ambients calculus, in which no communication channels are present and the only possible actions are represented by the moves performed by mobile processes. The information flow property of interest is defined in terms of the possibility for a confidential ambient/data to move outside a security boundary. In a previous paper, we gave a very simple syntactic property that is sufficient to imply the absence of unwanted information flows. In this paper, a control flow analysis is defined, as a refinement of the Hansen-Jensen-Nielsons's CFA, that allows to capture boundary crossings with better accuracy.

Scheda breve

Scheda completa

Scheda completa (DC)

	Parole chiave
	
			Mobile ambients; Security; Static analysis
		
	Settori scientifico-disciplinari del contributo
	
			Settore INF/01 - Informatica
		
	Data di pubblicazione
	
			2002
		
	Tipologia
	
			Book Part (author)
		
	Appare nelle tipologie:
	
			03 - Contributo in volume

File in questo prodotto:

Non ci sono file associati a questo prodotto.

Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/140808

Citazioni

ND

18

ND

social impact