Abstract Certification of Global Non-Interference in Rewriting Logic [article]

Mauricio Alba-Castro, and Santiago Escobar ELP-DSIC, U. Politécnica de Valencia, Spain. alpuente,sescobar@dsic.upv.es. U. Autónoma de Manizales, Colombia. malba@autonoma.edu.co)
2010 arXiv   pre-print
Non-interference is a semantic program property that assigns confidentiality levels to data objects and prevents illicit information flows from occurring from high to low security levels. In this paper, we present a novel security model for global non-interference which approximates non-interference as a safety property. We also propose a certification technique for global non-interference of complete Java classes based on rewriting logic, a very general logical and semantic framework that is
more » ... ficiently implemented in the high-level programming language Maude. Starting from an existing Java semantics specification written in Maude, we develop an extended, information-flow Java semantics that allows us to correctly observe global non-interference policies. In order to achieve a finite state transition system, we develop an abstract Java semantics that we use for secure and effective non-interference Java analysis. The analysis produces certificates that are independently checkable and are small enough to be used in practice.
arXiv:1006.4304v1 fatcat:acvkz35d7jewfmbm6sfkiihswa