Title :
Toward a mathematical foundation for information flow security
Author_Institution :
US Naval Res. Lab., Washington, DC, USA
Abstract :
A general-purpose, probabilistic state machine model which can be used to model a large class of nondeterministic (as well as deterministic) computer systems is described. The necessary probability theory to rigorously state and prove probabilistic properties of modeled systems is developed. A definition of information flow-security making use of this formalism is given. Intuitively, information flow security is the aspect of computer security concerned with how information is permitted to flow through a computer system. It is proved that the proposed definition of information flow security implies an information-theoretic definition. Finally, the author gives a verification condition for information flow security and proves that it implies the proposed definition of information flow security
Keywords :
finite automata; information theory; probabilistic logic; probability; security of data; computer security; computer systems; information flow-security; information-theoretic definition; nondeterministic; probabilistic properties; probabilistic state machine model; probability theory; verification condition; Bridges; Computer interfaces; Computer security; Concrete; Database systems; Equations; File systems; Information security; Information technology; Information theory;
Conference_Titel :
Research in Security and Privacy, 1991. Proceedings., 1991 IEEE Computer Society Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-2168-0
DOI :
10.1109/RISP.1991.130769
