Integrating Information Flow Analysis in Unifying Theories of Programming

This paper presents a formal approach for modelling and reasoning about information flow control in software systems under Hoare and He's Unifying Theories of Programming (UTP). We investigate the problem of integrating information flow control into system design in a unified semantic setting....

Celý popis

Uloženo v:
Podrobná bibliografie
Vydáno v:Proceedings (IEEE Pacific Rim International Symposium on Dependable Computing) s. 67 - 76
Hlavní autoři: Mu, Chunyan, Li, Guoqiang
Médium: Konferenční příspěvek
Jazyk:angličtina
Vydáno: IEEE 01.12.2021
Témata:
Cognition
Control systems
formal method
information flow
language-based security
Probabilistic logic
Programming
refinement
Semantics
Software systems
Specification languages
UTP
ISSN:2473-3105
On-line přístup:Získat plný text
Tagy: Přidat tag
Žádné tagy, Buďte první, kdo vytvoří štítek k tomuto záznamu!
Popis
Shrnutí:This paper presents a formal approach for modelling and reasoning about information flow control in software systems under Hoare and He's Unifying Theories of Programming (UTP). We investigate the problem of integrating information flow control into system design in a unified semantic setting. Our approach can therefore treat information flow analysis and control in various families of specification languages and programming paradigms in a more general way. In addition, we formalise the link between classes of predicates as a paired function which maps set of the predicates from one class into set of the predicates from the other with a concern of flow security preservation. The proposed flow-sensitive combined theories of multiple level classes of predicates can be applied to ensure flow security in different paradigms under stepwise development.
ISSN:2473-3105
DOI:10.1109/PRDC53464.2021.00018