Title :
Possibilistic definitions of security-an assembly kit
Author_Institution :
German Res. Center for Artificial Intelligence, Saarbrucken, Germany
Abstract :
We present a framework in which different notions of security can be defined in a uniform and modular way. Each definition of security is formalized as a security predicate by assembling more primitive basic security predicates. A collection of such basic security predicates is defined and we demonstrate how well-known concepts like generalized non-interference or separability can be constructed from them. The framework is open and can be extended with new basic security predicates using a general schema. We investigate the compatibility of the assembled definitions with system properties apart from security and propose a new definition of security which does not restrict non-critical information flow. It turns out that the modularity of our framework simplifies these investigation. Finally, we discuss the stepwise development of secure systems
Keywords :
data privacy; security of data; generalized noninterference; noncritical information flow; security predicate; separability; stepwise system development; Access control; Artificial intelligence; Assembly systems; Information security; Interleaved codes;
Conference_Titel :
Computer Security Foundations Workshop, 2000. CSFW-13. Proceedings. 13th IEEE
Conference_Location :
Cambridge
Print_ISBN :
0-7695-0671-2
DOI :
10.1109/CSFW.2000.856936
