Title :
On the derivation of secure components
Author_Institution :
Programming Res. Group, Oxford Univ., UK
Abstract :
The author discusses the problems in deriving a system from its specification when that specification includes simple trace-based information-flow security properties as well as safety properties. He presents two fundamental theorems of information-flow security which describe the inherent difficulties of deriving secure implementations and considers the implications of these results. It is concluded that it is dangerous to extrapolate from success in the case of two to the case of many. Results proved about systems with just low- and high-access users may not extend easily to full lattices
Keywords :
formal specification; programming theory; security of data; safety properties; secure components; trace-based information-flow security; Computer security; Information security; Intelligent structures; Jacobian matrices; Milling machines; Program processors; Safety; Testing;
Conference_Titel :
Security and Privacy, 1989. Proceedings., 1989 IEEE Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-1939-2
DOI :
10.1109/SECPRI.1989.36298
