摘要: 提出了一种针对多线程程序的内部时间信息流的宽容的类型系统。在隐藏竞争变量集合的基础上定义了非干扰属性的形式化规范;在类型系统中区分了隐藏线程,细化了对内部时间信息流发生场景的分析。相对于已有的基于类型理论的方法,本类型系统可以允许更多实质上安全的代码通过类型检查。另外,类型系统的可靠性是在独立于调度模型的情况下证明的。
[1] Sabelfeld A,Myers A C.Language-based information-flow security[J].IEEE Journal on Selected Areas in Communications,2003,21(1):5-19 [2] Smith G.Improved typings for probabilistic noninterference in a multi-threaded language[J].J.Comput.Secur.,2006,14(6):591-623 [3] Russo A,et al.Closing internal timing channels by transformation[C]∥Proceedings of the 11th Asian computing science conference on Advances in computer science:secure software and related issues 2007.Tokyo,Japan:Springer-Verlag,2007 [4] Terauchi T.A Type System for Observational Determinism[C]∥Computer Security Foundations Symposium,2008.CSF ’08.IEEE 21st.2008 [5] Russo A,Sabelfeld A.Securing interaction between threads and the scheduler in the presence of synchronization[J].Journal of Logic and Algebraic Programming,2009,78(7):593-618 [6] Zdancewic S,Myers A C.Observational determinism for concurrent program security[C]∥Computer Security Foundations Workshop 2003.Proceedings 16th IEEE.2003 [7] Sabelfeld A.The Impact of Synchronisation on Secure Information Flow in Concurrent Programs[C]∥Revised Papers from the 4th International Andrei Ershov Memorial Conference on Perspectives of System Informatics.Akademgorodok,Novosi-birsk,Russia:Springer-Verlag,2001:225-239 [8] Volpano D,Smith G.Probabilistic noninterference in a concur-rent language[C]∥Computer Security Foundations Workshop 1998.Proceedings 11th IEEE.1998 [9] Huisman M,Worah P,Sunesen K.A temporal logic characteri-sation of observational determinism[C]∥Proceedings of the 19th IEEE Workshop on Computer Security Foundations.2006 [10] Mantel H,Sands D,Sudbrock H.Assumptions and Guarantees for Compositional Noninterference[C]∥Computer Security Foundations Symposium 2011IEEE 24th.2011 [11] Boudol G,Castellani I.Noninterference for concurrent programs and thread systems[J].Theoretical Computer Science,2002,281(1/2):109-130 [12] Barthe G,Nieto L P.Formally verifying information flow type systems for concurrent and thread systems[C]∥Proceedings of the 2004ACM Workshop on Formal Methods in Security Engineering 2004.ACM:Washington DC,USA,2004:13-22 |
No related articles found! |
|