Typing access control and secure information flow in sessions

Capecchi, Sara; Castellani, Ilaria; Dezani‐Ciancaglini, Mariangiola

doi:10.1016/j.ic.2014.07.005

Cited by 20 publications

(60 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The work in [6] is similar in spirit to ours, but is different in conception and details, as it uses a session graph specification to generate a cryptographic functional implementation that enjoys session integrity. Extensions of session types (e.g., [4,16]) address security issues in various ways, but do not directly support cryptographic operations, global state, nor connections with "applied" languages for (automated) verification, which are all enabled by our approach.…”

Section: Related Work and Concluding Remarksmentioning

confidence: 99%

See 1 more Smart Citation

Relating Process Languages for Security and Communication Correctness (Extended Abstract)

Nantes

Pérez

2018

Formal Techniques for Distributed Objects, Components, and Systems

View full text Add to dashboard Cite

Abstract. Process calculi are expressive specification languages for concurrency. They have been very successful in two research strands: (a) the analysis of security protocols and (b) the enforcement of correct messagepassing programs. Despite their shared foundations, languages and reasoning techniques for (a) and (b) have been separately developed. Here we connect two representative calculi from (a) and (b): we encode a (high-level) π-calculus for multiparty sessions into a (low-level) applied π-calculus for security protocols. We establish the correctness of our encoding, and we show how it enables the integrated analysis of security properties and communication correctness by re-using existing tools.

show abstract

Section: Related Work and Concluding Remarksmentioning

confidence: 99%

“…We also plan to connect our approach with existing type systems for secure information flow and access control in multiparty sessions [4].…”

Section: Related Work and Concluding Remarksmentioning

confidence: 99%

Relating Process Languages for Security and Communication Correctness (Extended Abstract)

Nantes

Pérez

2018

Formal Techniques for Distributed Objects, Components, and Systems

View full text Add to dashboard Cite

show abstract

“…A first work worth mentioning is [7], which presents an approach for dealing with non-interference properties in distributed systems where components interact within multiparty sessions. Systems are described with a session calculus featuring, among others, session creation, inter-session interaction, and session delegation.…”

Section: Related Work and Conclusionmentioning

confidence: 99%

“…A second difference lies in the specification languages used; our choreography description language differs from the calculi used in the above mentioned works. It would not be trivial, for instance, to integrate our type system with the type system of [7] as both focus on related but significantly different languages and properties. We would also like to remark that our work is still in a preliminary phase and does not yet consider aspects of choreography realizability, local projections and systems with multiple-sessions.…”

Section: Related Work and Conclusionmentioning

confidence: 99%

Discretionary Information Flow Control for Interaction-Oriented Specifications

Lafuente

Nielson

2015

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. This paper presents an approach to specify and check discretionary information flow properties of concurrent systems. The approach is inspired by the success of the interaction-oriented paradigm to concurrent systems (cf. choreographies, behavioural types, protocols,...) in providing behavioural guarantees of global properties such as deadlock-absence. We show how some information flow properties are easier to formalise and check on a global interaction-oriented description of a concurrent system rather than on a local process-oriented description of the components of the system. We use a simple choreography description language adapted from the literature of choreographies and session types. We provide a generic method to instrument the semantics with information flow annotations. Policies are used to specify the admissible flows of information. The main contribution of the paper is a sound type system for statically checking if a system specification ensures an information flow policy. The approach is illustrated with two archetypal examples of distributed and parallel computing systems: a protocol for an identity-secured data providing service and a parallel MapReduce computation.

show abstract

“…It uses a rather natural structural equivalence ≡ which erases monitored processes with end monitor and commutes independent messages (with different senders or different receivers) in queues [4]. Table 4: LTS of processes.…”

Section: Semanticsmentioning

confidence: 99%

Self-Adaptation and Secure Information Flow in Multiparty Structured Communications: A Unified Perspective

Castellani

Dezani‐Ciancaglini

Pérez

2014

Electron. Proc. Theor. Comput. Sci.

Self Cite

View full text Add to dashboard Cite

We present initial results on a comprehensive model of structured communications, in which selfadaptation and security concerns are jointly addressed. More specifically, we propose a model of self-adaptive, multiparty communications with secure information flow guarantees. In this model, security violations occur when processes attempt to read or write messages of inappropriate security levels within directed exchanges. Such violations trigger adaptation mechanisms that prevent the violations to occur and/or to propagate their effect in the choreography. Our model is equipped with local and global mechanisms for reacting to security violations; type soundness results ensure that global protocols are still correctly executed, while the system adapts itself to preserve security.

show abstract

Typing access control and secure information flow in sessions

Cited by 20 publications

References 19 publications

Relating Process Languages for Security and Communication Correctness (Extended Abstract)

Relating Process Languages for Security and Communication Correctness (Extended Abstract)

Discretionary Information Flow Control for Interaction-Oriented Specifications

Self-Adaptation and Secure Information Flow in Multiparty Structured Communications: A Unified Perspective

Contact Info

Product

Resources

About