论文信息 - The composability of non-interference [system security]

The composability of non-interference [system security]

The failure of non-interference to be preserved under composition is discussed. Two theorems are presented to this effect. The first proves McCullough's conjecture that non-interference is composable without feedback. The second provides a method of composition that preserves the non-interference property in the presence of feedback.

E. Stewart Lee | Aris Zakinthinos | E. S. Lee | A. Zakinthinos

[1] F. Javier Thayer,et al. Security and the Composition of Machines , 1988, CSFW.

[2] J. Todd Wittbold,et al. Information flow in nondeterministic systems , 1990, Proceedings. 1990 IEEE Computer Society Symposium on Research in Security and Privacy.

[3] Jonathan K. Millen,et al. Hookup security for synchronous machines , 1990, [1990] Proceedings. The Computer Security Foundations Workshop III.

[4] Daryl McCullough,et al. Noninterference and the composability of security properties , 1988, Proceedings. 1988 IEEE Symposium on Security and Privacy.

[5] John McLean,et al. A general theory of composition for trace sets closed under selective interleaving functions , 1994, Proceedings of 1994 IEEE Computer Society Symposium on Research in Security and Privacy.

[6] Daryl McCullough,et al. Specifications for Multi-Level Security and a Hook-Up , 1987, 1987 IEEE Symposium on Security and Privacy.

[7] J. Meseguer,et al. Security Policies and Security Models , 1982, 1982 IEEE Symposium on Security and Privacy.