Toward a mathematical foundation for information flow security

Author

Gray, James W.

Author_Institution

US Naval Res. Lab., Washington, DC, USA

fYear

1991

fDate

20-22 May 1991

Firstpage

21

Lastpage

34

Abstract

A general-purpose, probabilistic state machine model which can be used to model a large class of nondeterministic (as well as deterministic) computer systems is described. The necessary probability theory to rigorously state and prove probabilistic properties of modeled systems is developed. A definition of information flow-security making use of this formalism is given. Intuitively, information flow security is the aspect of computer security concerned with how information is permitted to flow through a computer system. It is proved that the proposed definition of information flow security implies an information-theoretic definition. Finally, the author gives a verification condition for information flow security and proves that it implies the proposed definition of information flow security

Keywords

finite automata; information theory; probabilistic logic; probability; security of data; computer security; computer systems; information flow-security; information-theoretic definition; nondeterministic; probabilistic properties; probabilistic state machine model; probability theory; verification condition; Bridges; Computer interfaces; Computer security; Concrete; Database systems; Equations; File systems; Information security; Information technology; Information theory;

fLanguage

English

Publisher

ieee

Conference_Titel

Research in Security and Privacy, 1991. Proceedings., 1991 IEEE Computer Society Symposium on

Conference_Location

Oakland, CA

Print_ISBN

0-8186-2168-0

Type

conf

DOI

10.1109/RISP.1991.130769

Filename

130769