On the Role of Abstract Non-Interference in Language-based Security

By: Isabella Mastroeni

Isabella Mastroeni
Dept. of Computing and Information Sciences
KSU
234 Nichols Hall
Manhattan, KS 66506 (USA)
isabellm@cis.ksu.edu

Abstract:

In this paper, we illustrate the role of the notion of Abstract Non-Interference in language based security, by explaining how it models both the weakening of attackers' observational capability, and the declassification of private information. Namely, we show that in abstract non-interference we model both attackers that can only observe properties of public data, and private properties that can or cannot flow. Moreover, we deepen the understanding of abstract non-interference by comparing it, by means of examples, with some the most interesting approaches to the weakening of non-interference, such as the PER model, robust declassification, delimited release and relaxed non-interference.
Related papers:
  • Abstract Non-Interference - Parameterizing non-interference by Abstract Interpretation (POPL'04,2004)
  • The PER model of Abstract Non-Interference (SAS'05,2005)
  • Adjoining Declassification and Attack Models by Abstract Interpretation (2004)
  • Modeling Information Flow Dependencies with Boolean Functions (WITS'04,2004)
  • Proving Abstract Non-Interference (CSL, 2004)

    • isabellm@cis.ksu.edu