TY - GEN
T1 - Secure information flow and program logics
AU - Beringer, Lennart
AU - Hofmann, Martin
PY - 2007
Y1 - 2007
N2 - We present interpretations of type systems for secure information flow in Hoare logic, complementing previous encodings in binary (e.g. relational) program logics. Treating base-line non-interference, multi-level security and flow sensitivity for a while language, we show how typing derivations may be used to automatically generate proofs in the program logic that certify the absence of illicit flows. In addition, we present proof rules for baseline non-interference for object-manipulating instructions, As a consequence, standard verification technology may be used for verifying that a concrete program satisfies the noninterference property. Our development is based on a formalisation of the encodings in Isabelle/HOL.
AB - We present interpretations of type systems for secure information flow in Hoare logic, complementing previous encodings in binary (e.g. relational) program logics. Treating base-line non-interference, multi-level security and flow sensitivity for a while language, we show how typing derivations may be used to automatically generate proofs in the program logic that certify the absence of illicit flows. In addition, we present proof rules for baseline non-interference for object-manipulating instructions, As a consequence, standard verification technology may be used for verifying that a concrete program satisfies the noninterference property. Our development is based on a formalisation of the encodings in Isabelle/HOL.
UR - http://www.scopus.com/inward/record.url?scp=35048902671&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=35048902671&partnerID=8YFLogxK
U2 - 10.1109/CSF.2007.30
DO - 10.1109/CSF.2007.30
M3 - Conference contribution
AN - SCOPUS:35048902671
SN - 0769528198
SN - 9780769528199
T3 - Proceedings - IEEE Computer Security Foundations Symposium
SP - 233
EP - 245
BT - Proceedings - 20th IEEE Computer Security Foundations Symposium, CSFS20
T2 - 20th IEEE Computer Security Foundations Symposium, CSFS20
Y2 - 6 July 2007 through 8 July 2007
ER -