论文信息 - Unwinding and Inference Control

Unwinding and Inference Control

This paper discusses two main ideas, unwinding and inference control. While both concern computer security, they are not closely related to each other. Unwinding is a verification technique for general security requirements based on noninterference assertions as in [Goguen & Meseguer 82a]. The inference control problem concerns preventing inference of unauthorized information by combining authorized information. The main result in this paper is an unwinding theorem that gives a very simple necessary and sufficient condition for a system to satisfy the MLS security policy system. A subsidiary topic is secure interfaces, which we show how to treat with noninterferce assertions.

José Meseguer | Joseph A. Goguen | J. Goguen | J. Meseguer

[1] Richard J. Feiertag. A Technique for Proving Specifications are Multilevel Secure , 1980 .

[2] J. Meigs,et al. WHO Technical Report , 1954, The Yale Journal of Biology and Medicine.

[3] J. Meseguer,et al. Security Policies and Security Models , 1982, 1982 IEEE Symposium on Security and Privacy.

[4] David Lorge Parnas,et al. Use of the concept of transparency in the design of hierarchically structured systems , 1975, CACM.

[5] C L Heitmeyer,et al. Military Message Systems: Requirements and Security Model. , 1982 .

[6] David A. Bell,et al. Secure computer systems: mathematical foundations and model , 1973 .

[7] C. Heitmeyer,et al. Military Message Systems: Current Status and Future Directions , 1980, IEEE Trans. Commun..