Najah Ben Said , Takoua Abdellatif, Saddek Bensalem, Marius Bozga
Model-driven Information Flow Security for Component-Based Systems (2013)
Model-driven Information Flow Security for Component-Based Systems (2013)
TR-2013-7.pdf
Keywords: component-based systems, information flow security, non-interference, unwinding conditions, verification.
Abstract: This paper proposes a framework for information flow security in component-based systems which follows the model-driven security approach. The security policy is defined and verified from the early steps of the system design. Two kinds of non-interference properties are formally introduced and for both of them, sufficient conditions that ensures and simplifies the automated verification are proposed. The verification is compositional, first locally, by checking the behavior of every atomic component and then globally, by checking the inter-components communication and coordination. The benefit of the approach is illustrated through an application to secure heterogeneous distributed systems.
