Mantel, Heiko (2000)
Possibilistic Definitions of Security -- An Assembly Kit.
Konferenzveröffentlichung, Bibliographie
Kurzbeschreibung (Abstract)
We present a framework in which different notions of securitycan be defined in a uniform and modular way. Eachdefinition of security is formalized as a security predicateby assembling more primitive basic security predicates. Acollection of such basic security predicates is defined andwe demonstrate how well-known concepts like generalizednon-interference or separability can be constructed fromthem. The framework is open and can be extended with newbasic security predicates using a general schema. We investigatethe compatibility of the assembled definitions withsystem properties apart from security and propose a newdefinition of security which does not restrict non-criticalinformation flow. It turns out that the modularity of ourframework simplifies these investigation. Finally, we discussthe stepwise development of secure systems.
| Typ des Eintrags: | Konferenzveröffentlichung |
|---|---|
| Erschienen: | 2000 |
| Autor(en): | Mantel, Heiko |
| Art des Eintrags: | Bibliographie |
| Titel: | Possibilistic Definitions of Security -- An Assembly Kit |
| Sprache: | Englisch |
| Publikationsjahr: | 2000 |
| Verlag: | IEEE Computer Society |
| Buchtitel: | Proceedings of the 13th IEEE Computer Security Foundations Workshop |
| Kurzbeschreibung (Abstract): | We present a framework in which different notions of securitycan be defined in a uniform and modular way. Eachdefinition of security is formalized as a security predicateby assembling more primitive basic security predicates. Acollection of such basic security predicates is defined andwe demonstrate how well-known concepts like generalizednon-interference or separability can be constructed fromthem. The framework is open and can be extended with newbasic security predicates using a general schema. We investigatethe compatibility of the assembled definitions withsystem properties apart from security and propose a newdefinition of security which does not restrict non-criticalinformation flow. It turns out that the modularity of ourframework simplifies these investigation. Finally, we discussthe stepwise development of secure systems. |
| Fachbereich(e)/-gebiet(e): | 20 Fachbereich Informatik > Modellierung und Analyse von Informationssystemen (MAIS) 20 Fachbereich Informatik |
| Hinterlegungsdatum: | 31 Dez 2016 09:57 |
| Letzte Änderung: | 16 Mai 2018 08:55 |
| PPN: | |
| Export: | |
| Suche nach Titel in: | TUfind oder in Google |
 |
Frage zum Eintrag |
Optionen (nur für Redakteure)
 |
Redaktionelle Details anzeigen |
Drucken
Impressum