Sciweavers

CSFW
2005
IEEE

Belief in Information Flow

14 years 5 months ago
Belief in Information Flow
To reason about information flow based on beliefs, a new model is developed that describes how attacker beliefs change due to the attacker’s observation of the execution of a probabilistic (or deterministic) program. The model enables compositional reasoning about information flow from attacks involving sequences of interactions. The model also supports a new metric for quantitative information flow that measures accuracy of an attacker’s beliefs. Applying this new metric reveals the inadequacies of traditional information flow metrics, which are based on reduction of uncertainty. The new metric can also be used to reason about misinformation; deterministic programs are shown to be incapable of producing misinformation. In addition, programs in which nondeterministic choices are made by insiders, who collude with attackers, can be handled.
Michael R. Clarkson, Andrew C. Myers, Fred B. Schn
Added 24 Jun 2010
Updated 24 Jun 2010
Type Conference
Year 2005
Where CSFW
Authors Michael R. Clarkson, Andrew C. Myers, Fred B. Schneider
Comments (0)