We define several security properties for the analysis of probabilistic noninterference as a conservative extension of a classical, nondeterministic, process-algebraic approach to information flow theory. We show that probabilistic covert channels (that are not observable in the nondeterministic setting) may be revealed through our approach and that probabilistic information can be exploited to give an estimate of the amount of confidential information flowing to unauthorized users. Finally, we present a case study showing that the expressiveness of the calculus we adopt makes it possible to model and analyze real concurrent systems.
A.Aldini, M.Bravetti, R.Gorrieri (2004). A Process Algebraic Approach for the Analysis of Probabilistic Non-Interference. JOURNAL OF COMPUTER SECURITY, 12(2), 191-246 [10.3233/JCS-2004-12202].
A Process Algebraic Approach for the Analysis of Probabilistic Non-Interference
BRAVETTI, MARIO;GORRIERI, ROBERTO
2004
Abstract
We define several security properties for the analysis of probabilistic noninterference as a conservative extension of a classical, nondeterministic, process-algebraic approach to information flow theory. We show that probabilistic covert channels (that are not observable in the nondeterministic setting) may be revealed through our approach and that probabilistic information can be exploited to give an estimate of the amount of confidential information flowing to unauthorized users. Finally, we present a case study showing that the expressiveness of the calculus we adopt makes it possible to model and analyze real concurrent systems.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.