Process algebra and non-interference
- 1 January 1999
- proceedings article
- Published by Institute of Electrical and Electronics Engineers (IEEE)
- p. 214-227
- https://doi.org/10.1109/csfw.1999.779775
Abstract
The information security community has long debated the exact definition of the term “security”. Even if we focus on the more modest notion of confidentiality the precise definition remains controversial. In their seminal paper, Goguen and Meseguer (1982) took an important step towards a formalisation of the notion of absence of information flow with the concept of non-interference. This too was found to have problems and limitations, particularly when applied to systems displaying non-determinism which led to a proliferation of refinements of this notion and there is still no consensus as to which of these is “correct”. We show that this central concept in information security is closely related to a central concept of computer science: that of the equivalence of systems. The notion of non-interference depends ultimately on our notion of process equivalence. However what constitutes the equivalence of two processes is itself a deep and controversial question in computer science with a number of distinct definitions proposed in the literature. We illustrate how several of the leading candidates for a definition of non-interference mirror notions of system equivalence. Casting these security concepts in a process algebraic framework clarifies the relationship between them and allows many results to be carried over regarding, for example, composition and unwinding. We also outline some generalisations of non-interference to handle partial and conditional information flowKeywords
This publication has 7 references indexed in Scilit:
- A general theory of composition for trace sets closed under selective interleaving functionsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2002
- Abstraction and TestingPublished by Springer Nature ,1999
- A Calculus for Cryptographic Protocols: The Spi CalculusInformation and Computation, 1999
- CSP and anonymityPublished by Springer Nature ,1996
- Non-interference through determinismPublished by Springer Nature ,1994
- Information flow in nondeterministic systemsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,1990
- Security Policies and Security ModelsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,1982