A general theory of composition for a class of "possibilistic" properties

Since the initial work of Daryl McCullough (1987) on the subject, the security community has struggled with the problem of composing "possibilistic" information-flow properties. Such properties fall outside of the Alpern-Schneider safety/liveness domain, and hence, they are not subject to...

Full description

Saved in:
Bibliographic Details
Published inIEEE transactions on software engineering Vol. 22; no. 1; pp. 53 - 67
Main Author McLean, J.
Format Journal Article Conference Proceeding
LanguageEnglish
Published New York, NY IEEE 01.01.1996
Institute of Electrical and Electronics Engineers
IEEE Computer Society
Subjects
Access control
Applied sciences
Computer programming
Computer science; control theory; systems
Computer systems and distributed systems. User interface
Confidentiality
Cryptography
Cybersecurity
Exact sciences and technology
Feedback
Flow production systems
Information dissemination
Information security
Information, signal and communications theory
Interconnected systems
Interleaved codes
Laboratories
Programming theory
Refining
Safety
Signal and communications theory
Software
Software engineering
Studies
Telecommunications
Telecommunications and information theory
Teleprocessing networks. Isdn
Theoretical computing
System structure
Security systems
Partial ordering
Feedback regulation
Modeling
Information technology
System theory
Computer systems
Possibility theory
Specifications
Information flow
Reasoning
Security of data
Security key
Online AccessGet full text

Cover

More Information
Summary:Since the initial work of Daryl McCullough (1987) on the subject, the security community has struggled with the problem of composing "possibilistic" information-flow properties. Such properties fall outside of the Alpern-Schneider safety/liveness domain, and hence, they are not subject to the Abadi-Lamport Composition Principle. The paper introduces a set of trace constructors called selective interleaving functions and shows that possibilistic information-flow properties are closure properties with respect to different classes of selective interleaving functions. This provides a uniform framework for analyzing these properties, allowing us to construct both a partial ordering for them and a theory of composition for them. We present a number of composition constructs, show the extent to which each preserves closure with respect to different classes of selective interleaving functions, and show that they are sufficient for forming the general hook-up construction. We see that although closure under a class of selective interleaving functions is generally preserved by product and cascading, it is not generally preserved by feedback, internal system composition constructs, or refinement. We examine the reason for this.
Bibliography:ObjectType-Article-1
SourceType-Scholarly Journals-1
content type line 14
ObjectType-Article-2
ObjectType-Feature-1
content type line 23
ISSN:0098-5589
1939-3520
DOI:10.1109/32.481534