Handling Encryption in an Analysis for Secure Information Flow

Laud, Peeter

doi:10.1007/3-540-36575-3_12

Cited by 40 publications

(34 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…It also provides a bound on the probability of success of an attack. It considerably extends early work by Laud [141,142] which was limited either to passive adversaries or to a single session of the protocol. More recently, Tšahhirov and Laud [144,177] developed a tool similar to CryptoVerif but that represents games by dependency graphs; it handles public-key and shared-key encryption and proves secrecy properties.…”

Section: Direct Computational Proofsmentioning

confidence: 62%

Security Protocol Verification: Symbolic and Computational Models

Blanchet

2012

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Section: Direct Computational Proofsmentioning

confidence: 62%

Security Protocol Verification: Symbolic and Computational Models

Blanchet

2012

Lecture Notes in Computer Science

View full text Add to dashboard Cite

“…Laud [13] presents a weakened variant of non-interference termed 'computational independence, ' using static analysis to track dependencies between variables. Security is guaranteed when the public outputs are computationally independent from all of the sensitive inputs.…”

Section: Related Workmentioning

confidence: 99%

Towards a Type System for Security APIs

Keighren

Aspinall

Steel

2009

Foundations and Applications of Security Analysis

View full text Add to dashboard Cite

Abstract. Security API analysis typically only considers a subset of an API's functions, with results bounded by the number of function calls. Furthermore, attacks involving partial leakage of sensitive information are usually not covered. Type-based static analysis has the potential to alleviate these shortcomings. To that end, we present a type system for secure information flow based upon the one of Volpano, Smith and Irvine [1], extended with types for cryptographic keys and ciphertext similar to those in Sumii and Pierce [2]. In contrast to some other type systems, the encryption and decryption of keys does not require special treatment. We show that a well-typed sequence of commands is non-interferent, based upon a definition of indistinguishability where, in certain circumstances, the adversary can distinguish between ciphertexts that correspond to encrypted public data.

show abstract

“…Other work in using sound type systems for secure information flow has focused on areas such as: encryption and decryption of information, where flows from plaintext (High) information to ciphertext (Low) information must be addressed in light of noninterference rules that would seem to prevent such interaction [21] [35]; probabilistic noninterference, where probability distributions are used to determine a likelihood of noninterference from High to Low variables, primarily for multi-threaded processes where scheduling is nondeterministic [39][31] [36]; and type inference, in which the flow of information is automatically determined based on semantic analysis [34] [7]. Eventually, Smith & Thober [37] enhanced the linguistic model of secure information flow such that sensitivity labels need be assigned only at I/O boundaries, while the labels of variables and constants, as well as data information flow through a program's execution, are automatically derived relative to the I/O (device) labels.…”

Section: Related Workmentioning

confidence: 99%

A security domain model to assess software for exploitable covert channels

Shaffer

Auguston

Irvine

et al. 2008

Proceedings of the Third ACM SIGPLAN Workshop on Programming Languages and Analysis for Security

View full text Add to dashboard Cite

Covert channels can result in unauthorized information flows when exploited by malicious software. To address this problem, we present a precise, formal definition for covert channels, which relies on control flow dependency tracing through program execution, and extends Dennings' and subsequent classic work in secure information flow [9][40] [30]. A formal security Domain Model (DM) for conducting static analysis of programs to identify covert channel vulnerabilities is described. The DM is comprised of an Invariant Model, which defines the generic concepts of program state, information flow, and covert channel rules; and an Implementation Model, which specifies the behavior of a target program. The DM is compiled from a representation of the program, written in a domain-specific Implementation Modeling Language (IML), and a specification of the security policy written in Alloy. The Alloy Analyzer tool is used to perform static analysis of the DM to automatically detect potential covert channel vulnerabilities and security policy violations in the target program.

show abstract

Handling Encryption in an Analysis for Secure Information Flow

Cited by 40 publications

References 21 publications

Security Protocol Verification: Symbolic and Computational Models

Security Protocol Verification: Symbolic and Computational Models

Towards a Type System for Security APIs

A security domain model to assess software for exploitable covert channels

Contact Info

Product

Resources

About