Issue No.05 - September/October (2010 vol.36)
Ruggero Lanotte , Università dell'Insubria, Como
Angelo Troina , Università di Torino, Torino
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/TSE.2010.4
In multilevel systems, it is important to avoid unwanted indirect information flow from higher levels to lower levels, namely, the so-called covert channels. Initial studies of information flow analysis were performed by abstracting away from time and probability. It is already known that systems that are proven to be secure in a possibilistic framework may turn out to be insecure when time or probability is considered. Recently, work has been done in order to consider also aspects either of time or of probability, but not both. In this paper, we propose a general framework based on Probabilistic Timed Automata, where both probabilistic and timing covert channels can be studied. We define a Noninterference security property and a Nondeducibility on Composition security property, which allow expressing information flow in a timed and probabilistic setting. We then compare these properties with analogous ones defined in contexts where either time or probability or neither of them are taken into account. This permits a classification of the properties depending on their discerning power. As an application, we study a system with covert channels that we are able to discover by applying our techniques.
Probabilistic timed automata, multilevel security, information flow analysis, weak bisimulation.
Ruggero Lanotte, Angelo Troina, "Time and Probability-Based Information Flow Analysis", IEEE Transactions on Software Engineering, vol.36, no. 5, pp. 719-734, September/October 2010, doi:10.1109/TSE.2010.4