Possibilistic definitions of security-an assembly kit

Mantel, Heiko

Possibilistic definitions of security-an assembly kit

Publikationstyp

Conference Paper

Date Issued

2000-07

Sprache

English

Author(s)

Mantel, Heiko

TORE-URI

http://hdl.handle.net/11420/14030

Start Page

185

End Page

199

Citation

Proceedings13th IEEE Computer Security Foundations Workshop: 185-199 (2000)

Contribution to Conference

13th IEEE Computer Security Foundations Workshop CSFW-13

Publisher DOI

10.1109/CSFW.2000.856936

Scopus ID

2-s2.0-0033701251

Publisher

IEEE

We present a framework in which different notions of security can be defined in a uniform and modular way. Each definition of security is formalized as a security predicate by assembling more primitive basic security predicates. A collection of such basic security predicates is defined and we demonstrate how well-known concepts like generalized non-interference or separability can be constructed from them. The framework is open and can be extended with new basic security predicates using a general schema. We investigate the compatibility of the assembled definitions with system properties apart from security and propose a new definition of security which does not restrict non-critical information flow. It turns out that the modularity of our framework simplifies these investigation. Finally, we discuss the stepwise development of secure systems.

DDC Class

004: Informatik

Options

Possibilistic definitions of security-an assembly kit