An Application of the (max, +) Algebra to Information Flow Security

Author

Werner, Matthias ; Jaeger, Michael A. ; Parzyjegla, Helge

Author_Institution

Oper. Syst. Group, Chemnitz Inst. of Technol., Chemnitz

fYear

2008

fDate

13-18 April 2008

Firstpage

262

Lastpage

266

Abstract

Confidentiality is one of the most important topics in computer security research. In order to check and ensure confidentiality, information flow models are widely used. These models support the specification of valid flows of information. Furthermore, they provide means to formally check whether a given system fulfills a certain security property within this model. In this paper, we propose an information flow model which accounts for different security concerns. In this model, each participant of the communication may have a different role and, thus, different clearance levels for each security concern. Moreover, we demonstrate the application of the (max, +) algebra to analyze the security of a given system and provide an algebraic check for the security property. This includes a method to derive assignments of security clearance levels that do not invalidate the system´s security.

Keywords

algebra; security of data; algebraic check; computer security; confidentiality information flow model; information flow security; system security; Access control; Algebra; Application software; Chemical technology; Communication system security; Computer security; Information security; Lattices; Operating systems; Permission; information flow; lattice model; maxplus; security;

fLanguage

English

Publisher

ieee

Conference_Titel

Networking, 2008. ICN 2008. Seventh International Conference on

Conference_Location

Cancun

Print_ISBN

978-0-7695-3106-9

Electronic_ISBN

978-0-7695-3106-9

Type

conf

DOI

10.1109/ICN.2008.87

Filename

4498174