Sciweavers

PPDP
2005
Springer

Security policy in a declarative style

14 years 6 months ago
Security policy in a declarative style
We address the problem of controlling information leakage in a concurrent declarative programming setting. Our aim is to define verification tools in order to distinguish between authorized, or declared, information flows such as password testing (e.g., ATM, login processes, etc.) and nonauthorized ones. In this paper, we first propose a way to define security policies as confluent and terminating rewrite systems. Such policies define how the privacy levels of information evolve. Then, we provide a formal definition of secure processes with respect to a given security policy. We also define an actual verification algorithm of secure processes based on constraint solving.
Rachid Echahed, Frédéric Prost
Added 28 Jun 2010
Updated 28 Jun 2010
Type Conference
Year 2005
Where PPDP
Authors Rachid Echahed, Frédéric Prost
Comments (0)