Title :
An Application of the (max, +) Algebra to Information Flow Security
Author :
Werner, Matthias ; Jaeger, Michael A. ; Parzyjegla, Helge
Author_Institution :
Oper. Syst. Group, Chemnitz Inst. of Technol., Chemnitz
Abstract :
Confidentiality is one of the most important topics in computer security research. In order to check and ensure confidentiality, information flow models are widely used. These models support the specification of valid flows of information. Furthermore, they provide means to formally check whether a given system fulfills a certain security property within this model. In this paper, we propose an information flow model which accounts for different security concerns. In this model, each participant of the communication may have a different role and, thus, different clearance levels for each security concern. Moreover, we demonstrate the application of the (max, +) algebra to analyze the security of a given system and provide an algebraic check for the security property. This includes a method to derive assignments of security clearance levels that do not invalidate the system´s security.
Keywords :
algebra; security of data; algebraic check; computer security; confidentiality information flow model; information flow security; system security; Access control; Algebra; Application software; Chemical technology; Communication system security; Computer security; Information security; Lattices; Operating systems; Permission; information flow; lattice model; maxplus; security;
Conference_Titel :
Networking, 2008. ICN 2008. Seventh International Conference on
Conference_Location :
Cancun
Print_ISBN :
978-0-7695-3106-9
Electronic_ISBN :
978-0-7695-3106-9
DOI :
10.1109/ICN.2008.87
