Component-oriented verification of noninterference

Saved in:
Bibliographic Details
Title: Component-oriented verification of noninterference
Authors: Aldini, Alessandro aldini@sti.uniurb.it, Bernardo, Marco1
Source: Journal of Systems Architecture. Mar2011, Vol. 57 Issue 3, p282-293. 12p.
Subjects: Computer software, Software engineering, Component software, Software verification, Algebra, Computer systems, Computer security
Abstract: Abstract: Component-based software engineering often relies on libraries of trusted components that are combined to build dependable and secure software systems. Resource dependences, constraint conflicts, and information flow interferences arising from component combination that may violate security requirements can be revealed by means of the noninterference approach to information flow analysis. However, the security of large component-based systems may be hard to assess in an efficient and systematic way. In this paper, we propose a component-oriented formulation of noninterference that enables compositional security verification driven by system topology. This is realized by implementing scalable noninterference checks in the formal framework of a process algebraic architectural description language equipped with equivalence checking techniques. [Copyright &y& Elsevier]
Copyright of Journal of Systems Architecture is the property of Elsevier B.V. and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)
Database: Engineering Source
FullText Text:
  Availability: 0
Header DbId: egs
DbLabel: Engineering Source
An: 59328635
AccessLevel: 6
PubType: Academic Journal
PubTypeId: academicJournal
PreciseRelevancyScore: 0
IllustrationInfo
Items – Name: Title
  Label: Title
  Group: Ti
  Data: Component-oriented verification of noninterference
– Name: Author
  Label: Authors
  Group: Au
  Data: <searchLink fieldCode="AR" term="%22Aldini%2C+Alessandro%22">Aldini, Alessandro</searchLink><i> aldini@sti.uniurb.it</i><br /><searchLink fieldCode="AR" term="%22Bernardo%2C+Marco%22">Bernardo, Marco</searchLink><relatesTo>1</relatesTo>
– Name: TitleSource
  Label: Source
  Group: Src
  Data: <searchLink fieldCode="JN" term="%22Journal+of+Systems+Architecture%22">Journal of Systems Architecture</searchLink>. Mar2011, Vol. 57 Issue 3, p282-293. 12p.
– Name: Subject
  Label: Subjects
  Group: Su
  Data: <searchLink fieldCode="DE" term="%22Computer+software%22">Computer software</searchLink><br /><searchLink fieldCode="DE" term="%22Software+engineering%22">Software engineering</searchLink><br /><searchLink fieldCode="DE" term="%22Component+software%22">Component software</searchLink><br /><searchLink fieldCode="DE" term="%22Software+verification%22">Software verification</searchLink><br /><searchLink fieldCode="DE" term="%22Algebra%22">Algebra</searchLink><br /><searchLink fieldCode="DE" term="%22Computer+systems%22">Computer systems</searchLink><br /><searchLink fieldCode="DE" term="%22Computer+security%22">Computer security</searchLink>
– Name: Abstract
  Label: Abstract
  Group: Ab
  Data: Abstract: Component-based software engineering often relies on libraries of trusted components that are combined to build dependable and secure software systems. Resource dependences, constraint conflicts, and information flow interferences arising from component combination that may violate security requirements can be revealed by means of the noninterference approach to information flow analysis. However, the security of large component-based systems may be hard to assess in an efficient and systematic way. In this paper, we propose a component-oriented formulation of noninterference that enables compositional security verification driven by system topology. This is realized by implementing scalable noninterference checks in the formal framework of a process algebraic architectural description language equipped with equivalence checking techniques. [Copyright &y& Elsevier]
– Name: AbstractSuppliedCopyright
  Label:
  Group: Ab
  Data: <i>Copyright of Journal of Systems Architecture is the property of Elsevier B.V. and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract.</i> (Copyright applies to all Abstracts.)
PLink https://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=egs&AN=59328635
RecordInfo BibRecord:
  BibEntity:
    Identifiers:
      – Type: doi
        Value: 10.1016/j.sysarc.2010.06.005
    Languages:
      – Code: eng
        Text: English
    PhysicalDescription:
      Pagination:
        PageCount: 12
        StartPage: 282
    Subjects:
      – SubjectFull: Computer software
        Type: general
      – SubjectFull: Software engineering
        Type: general
      – SubjectFull: Component software
        Type: general
      – SubjectFull: Software verification
        Type: general
      – SubjectFull: Algebra
        Type: general
      – SubjectFull: Computer systems
        Type: general
      – SubjectFull: Computer security
        Type: general
    Titles:
      – TitleFull: Component-oriented verification of noninterference
        Type: main
  BibRelationships:
    HasContributorRelationships:
      – PersonEntity:
          Name:
            NameFull: Aldini, Alessandro
      – PersonEntity:
          Name:
            NameFull: Bernardo, Marco
    IsPartOfRelationships:
      – BibEntity:
          Dates:
            – D: 01
              M: 03
              Text: Mar2011
              Type: published
              Y: 2011
          Identifiers:
            – Type: issn-print
              Value: 13837621
          Numbering:
            – Type: volume
              Value: 57
            – Type: issue
              Value: 3
          Titles:
            – TitleFull: Journal of Systems Architecture
              Type: main
ResultId 1