On integrating confidentiality and functionality in a formal method

Jeremy Lawrence Jacob; Michael James Banks

doi:10.1007/s00165-013-0285-4

On integrating confidentiality and functionality in a formal method

Jeremy Lawrence Jacob, Michael James Banks

Computer Science

Research output: Contribution to journal › Article › peer-review

Abstract

This paper proposes a formal method, based on Circus, for developing software systems that respect a joint specification of functionality and confidentiality attributes. We extend the semantics of Circus to capture the information that users can infer about a system’s behaviour, enabling confidentiality and functionality attributes of a system to be specified together. We represent inconsistencies between functionality and confidentiality properties as miracles, rendering insecure functionality infeasible. We present techniques for verifying that a system design’s functionality and confidentiality attributes are mutually consistent, and for ensuring that consistency is maintained by refinement steps.

Original language	English
Pages (from-to)	963-992
Number of pages	30
Journal	Formal Aspects of Computing
Volume	26
Issue number	5
Early online date	27 Sept 2013
DOIs	https://doi.org/10.1007/s00165-013-0285-4
Publication status	Published - 2014

Keywords

Information flow security
Confidentiality properties
Circus
Unifying theories of programming
Miracles
Confidentiality-preserving refinement

Access to Document

10.1007/s00165-013-0285-4

Jeremy Lawrence Jacob
- jlj3york.acuk
- Computer Science - Senior Lecturer, Former employee
Person: Academic

Cite this

@article{b0dafc44a2de45f19da22f272312495e,

title = "On integrating confidentiality and functionality in a formal method",

abstract = "This paper proposes a formal method, based on Circus, for developing software systems that respect a joint specification of functionality and confidentiality attributes. We extend the semantics of Circus to capture the information that users can infer about a system{\textquoteright}s behaviour, enabling confidentiality and functionality attributes of a system to be specified together. We represent inconsistencies between functionality and confidentiality properties as miracles, rendering insecure functionality infeasible. We present techniques for verifying that a system design{\textquoteright}s functionality and confidentiality attributes are mutually consistent, and for ensuring that consistency is maintained by refinement steps.",

keywords = "Information flow security, Confidentiality properties, Circus, Unifying theories of programming, Miracles, Confidentiality-preserving refinement",

author = "Jacob, {Jeremy Lawrence} and Banks, {Michael James}",

year = "2014",

doi = "10.1007/s00165-013-0285-4",

language = "English",

volume = "26",

pages = "963--992",

journal = "Formal Aspects of Computing",

issn = "0934-5043",

publisher = "Springer",

number = "5",

}

TY - JOUR

T1 - On integrating confidentiality and functionality in a formal method

AU - Jacob, Jeremy Lawrence

AU - Banks, Michael James

PY - 2014

Y1 - 2014

N2 - This paper proposes a formal method, based on Circus, for developing software systems that respect a joint specification of functionality and confidentiality attributes. We extend the semantics of Circus to capture the information that users can infer about a system’s behaviour, enabling confidentiality and functionality attributes of a system to be specified together. We represent inconsistencies between functionality and confidentiality properties as miracles, rendering insecure functionality infeasible. We present techniques for verifying that a system design’s functionality and confidentiality attributes are mutually consistent, and for ensuring that consistency is maintained by refinement steps.

AB - This paper proposes a formal method, based on Circus, for developing software systems that respect a joint specification of functionality and confidentiality attributes. We extend the semantics of Circus to capture the information that users can infer about a system’s behaviour, enabling confidentiality and functionality attributes of a system to be specified together. We represent inconsistencies between functionality and confidentiality properties as miracles, rendering insecure functionality infeasible. We present techniques for verifying that a system design’s functionality and confidentiality attributes are mutually consistent, and for ensuring that consistency is maintained by refinement steps.

KW - Information flow security

KW - Confidentiality properties

KW - Circus

KW - Unifying theories of programming

KW - Miracles

KW - Confidentiality-preserving refinement

U2 - 10.1007/s00165-013-0285-4

DO - 10.1007/s00165-013-0285-4

M3 - Article

SN - 0934-5043

VL - 26

SP - 963

EP - 992

JO - Formal Aspects of Computing

JF - Formal Aspects of Computing

IS - 5

ER -

On integrating confidentiality and functionality in a formal method

Abstract

Keywords

Access to Document

Profiles

Jeremy Lawrence Jacob

Cite this