Dynamic Enforcement of Knowledge-Based Security Policies

Mardziel, Piotr; Magill, S.; Hicks, Michael; Srivatsa, Mudhakar

doi:10.1109/csf.2011.15

Cited by 37 publications

(48 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Refinements of this idea appear in the work of Mardziel et al [17] and Bouissou et al [2]. Instead of the explicit representations of distributions found in these works, we characterize sets of distributions by means of bounds on moments of expressions.…”

Section: Introductionmentioning

confidence: 99%

“…Proving expectation invariants often requires approximating the distribution of states after n steps of loop execution (see [2,20,22,9,17] for techniques that approximate distributions in a sound manner). However, even simple programs, such as the program shown in Figure 1, can exhibit complex distributions of reachable states after just a few steps of loop execution (see Figure 2).…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Expectation Invariants for Probabilistic Program Loops as Fixed Points

Chakarov

Sankaranarayanan

2014

Static Analysis

View full text Add to dashboard Cite

We present static analyses for probabilistic loops using expectation invariants. Probabilistic loops are imperative while-loops augmented with calls to random value generators. Whereas, traditional program analysis uses Floyd-Hoare style invariants to over-approximate the set of reachable states, our approach synthesizes invariant inequalities involving the expected values of program expressions at the loop head. We first define the notion of expectation invariants, and demonstrate their usefulness in analyzing probabilistic program loops. Next, we present the set of expectation invariants for a loop as a fixed point of the pre-expectation operator over sets of program expressions. Finally, we use existing concepts from abstract interpretation theory to present an iterative analysis that synthesizes expectation invariants for probabilistic program loops. We show how the standard polyhedral abstract domain can be used to synthesize expectation invariants for probabilistic programs, and demonstrate the usefulness of our approach on some examples of probabilistic program loops.

show abstract

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Expectation Invariants for Probabilistic Program Loops as Fixed Points

Chakarov

Sankaranarayanan

2014

Static Analysis

View full text Add to dashboard Cite

show abstract

“…Evaluation of information flow Mardziel et al [16,17] define the notion of knowledge threshold secure program. This is a generalisation of t-privacy allowing to attach different thresholds to different secrets.…”

Section: Related Workmentioning

confidence: 99%

“…Inspired by Clarkson et al's work on belief revision [6], Mardziel et al [16,17] propose a definition of knowledge threshold security stating that a program is secure if all the post-beliefs of all possible secrets are bounded by some threshold t. Espinoza and Smith [11] discuss this definition and name it worst-case posterior vulnerability underlining that it is very biased towards the worst output. In order to enforce knowledge threshold security, Mardziel et al [16,17] suggest to: i) run the program if the threshold holds for all the values of the secret input; ii) not run the program in case there is at least one value for which the guarantee does not hold.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Browser Randomisation against Fingerprinting: A Quantitative Information Flow Approach

2014

View full text Add to dashboard Cite

Abstract. Web tracking companies use device fingerprinting to distinguish the users of the websites by checking the numerous properties of their machines and web browsers. One way to protect the users' privacy is to make them switch between different machine and browser configurations. We propose a formalisation of this privacy enforcement mechanism. We use information-theoretic channels to model the knowledge of the tracker and the fingerprinting program, and show how to synthesise a randomisation mechanism that defines the distribution of configurations for each user. This mechanism provides a strong guarantee of privacy (the probability of identifying the user is bounded by a given threshold) while maximising usability (the user switches to other configurations rarely). To find an optimal solution, we express the enforcement problem of randomisation by a linear program. We investigate and compare several approaches to randomisation and find that more efficient privacy enforcement would often provide lower usability. Finally, we relax the requirement of knowing the fingerprinting program in advance, by proposing a randomisation mechanism that guarantees privacy for an arbitrary program.

show abstract

Symbolic Polytopes for Quantitative Interpolation and Verification

Gleissenthall

Köpf

Rybalchenko

2015

Computer Aided Verification

View full text Add to dashboard Cite

Proving quantitative properties of programs, such as bounds on resource usage or information leakage, often leads to verification conditions that involve cardinalities of sets. Existing approaches for dealing with such verification conditions operate by checking cardinality bounds for given formulas. However, they cannot synthesize formulas that satisfy given cardinality constraints, which limits their applicability for inferring cardinality-based inductive arguments. In this paper we present an algorithm for synthesizing formulas for given cardinality constraints, which relies on the theory of counting integral points in symbolic polytopes. We cast our algorithm in terms of a cardinality-constrained interpolation procedure, which we put to work in a solver for recursive Horn clauses with cardinality constraints based on abstraction refinement. We implement our technique and describe its evaluation on a number of representative examples.

show abstract

Dynamic Enforcement of Knowledge-Based Security Policies

Cited by 37 publications

References 24 publications

Expectation Invariants for Probabilistic Program Loops as Fixed Points

Expectation Invariants for Probabilistic Program Loops as Fixed Points

Browser Randomisation against Fingerprinting: A Quantitative Information Flow Approach

Symbolic Polytopes for Quantitative Interpolation and Verification

Contact Info

Product

Resources

About