Secrecy in Untrusted Networks

We investigate the protection of migrating agents against the untrusted sites they traverse. The resulting calculus provides a formal framework to reason about protection policies and security protocols over distributed, mobile infrastructures, and aims to stand to ambients as the spi calculus stands to π. We present a type system that separates trusted and untrusted data and code, while allowing safe interactions with untrusted sites. We prove that the type system enforces a privacy property, and show the expressiveness of the calculus via examples and an encoding ofthe spi calculus.

[1]  Jan Vitek,et al.  Secure Internet Programming: Security Issues for Mobile and Distributed Objects , 1999 .

[2]  Christian F. Tschudin,et al.  Towards mobile cryptography , 1998, Proceedings. 1998 IEEE Symposium on Security and Privacy (Cat. No.98CB36186).

[3]  Yu. A. Gur'yan,et al.  Parts I and II , 1982 .

[4]  James Riely,et al.  Type-Safe Execution of Mobile Agents in Anonymous Networks , 1998, ECOOP Workshops.

[5]  Michele Bugliesi,et al.  Boxed Ambients , 2001, TACS.

[6]  Jean-Jacques Lévy,et al.  An Asynchronous, Distributed Implementation of Mobile Ambients , 2000, IFIP TCS.

[7]  Luca Cardelli,et al.  Mobile Ambients , 1998, FoSSaCS.

[8]  Michele Bugliesi,et al.  Information Flow Security for Boxed Ambients , 2002, F-WAN@ICALP.

[9]  Michele Bugliesi,et al.  Communication Interference in Mobile Boxed Ambients , 2002, FSTTCS.

[10]  Andrew D. Gordon,et al.  Authenticity by typing for security protocols , 2003 .

[11]  Martín Abadi,et al.  A Calculus for Cryptographic Protocols: The spi Calculus , 1999, Inf. Comput..

[12]  Levente Buttyán,et al.  On the Problem of Trust in Mobile Agent Systems , 1998, NDSS.

[13]  Michele Bugliesi,et al.  Reasoning about Security in Mobile Ambients , 2001, CONCUR.

[14]  Robin Milner,et al.  A Calculus of Mobile Processes, II , 1992, Inf. Comput..

[15]  Martín Abadi,et al.  A calculus for cryptographic protocols: the spi calculus , 1997, CCS '97.

[16]  Martín Abadi,et al.  Protection in Programming-Language Translations , 1998, ICALP.

[17]  Luca Cardelli,et al.  Secrecy and group creation , 2005, Inf. Comput..

[18]  Luca Cardelli,et al.  Abstractions for Mobile Computation , 2001, Secure Internet Programming.

[19]  Rocco De Nicola,et al.  KLAIM: A Kernel Language for Agents Interaction and Mobility , 1998, IEEE Trans. Software Eng..

[20]  James Riely,et al.  Type-Safe Execution of Mobile Agents in Anonymous Networks , 1999, Secure Internet Programming.

[21]  Davide Sangiorgi,et al.  Controlling interference in ambients , 2000, POPL '00.

[22]  Robin Milner,et al.  A Calculus of Mobile Processes, II , 1992, Inf. Comput..

[23]  Davide Sangiorgi,et al.  A Distributed Abstract Machine for Safe Ambients , 2001, ICALP.

[24]  Michele Bugliesi,et al.  Secure safe ambients , 2001, POPL '01.

[25]  Jan Vitek,et al.  Secure Internet Programming , 1999 .