The epistemic representation of information flow security in probabilistic systems

CC
CSFW
1995
The Eighth IEEE Computer Security Foundations Workshop (CSFW '95)
Abstract - The epistemic representation of information flow security in probabilistic systems

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by P.F. Syverson Articles by J.W. Gray, III

The Eighth IEEE Computer Security Foundations Workshop (CSFW '95)

Kenmare, County Kerry, Ireland

March 13-March 15

ISBN: 0-8186-7033-9

	ASCII Text	x
	P.F. Syverson, J.W. Gray, III, "The epistemic representation of information flow security in probabilistic systems," Computer Security Foundations Workshop, IEEE, pp. 152, The Eighth IEEE Computer Security Foundations Workshop (CSFW '95), 1995.

	BibTex	x
	@article{ 10.1109/CSFW.1995.518560, author = {P.F. Syverson and J.W. Gray, III}, title = {The epistemic representation of information flow security in probabilistic systems}, journal ={Computer Security Foundations Workshop, IEEE}, volume = {0}, year = {1995}, issn = {1063-6900}, pages = {152}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSFW.1995.518560}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Foundations Workshop, IEEE TI - The epistemic representation of information flow security in probabilistic systems SN - 1063-6900 SP EP A1 - P.F. Syverson, A1 - J.W. Gray, III, PY - 1995 KW - security of data; information theory; formal logic; formal specification; epistemic representation; information flow security; probabilistic systems; multilevel security; security; security criterion; verification VL - 0 JA - Computer Security Foundations Workshop, IEEE ER -

P.F. Syverson, Center for High Assurance Comput. Syst., Naval Res. Lab., Washington, DC, USA

J.W. Gray, III, Center for High Assurance Comput. Syst., Naval Res. Lab., Washington, DC, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSFW.1995.518560

We set out a logic for reasoning about multilevel security of probabilistic systems. This logic includes modalities for time, knowledge, and probability. In earlier work we gave syntactic definitions of multilevel security and showed that their semantic interpretations are equivalent to independently motivated information-theoretic definitions. This paper builds on that earlier work in two ways. First, it substantially recasts the language and model of computation into the more standard Halpern-Tuttle framework for reasoning about knowledge and probability. Second, it brings together two distinct characterizations of security from that work. One was equivalent to the information-theoretic security criterion for a system to be free of covert channels but was difficult to prove. The other was a verification condition that implied the first; it was more easily provable but was too strong. This paper presents a characterization that is syntactically very similar to our previous verification condition but is proven to be semantically equivalent to the security criterion. The new characterization also means that our security criterion is expressible in a simpler logic and model.

Index Terms:

security of data; information theory; formal logic; formal specification; epistemic representation; information flow security; probabilistic systems; multilevel security; security; security criterion; verification

Citation:

P.F. Syverson, J.W. Gray, III, "The epistemic representation of information flow security in probabilistic systems," csfw, pp.152, The Eighth IEEE Computer Security Foundations Workshop (CSFW '95), 1995

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.