ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Tracing secure information flow through mode changes
Full text PdfPdf (216 KB)
Source ACM International Conference Proceeding Series; Vol. 171 archive
Proceedings of the 29th Australasian Computer Science Conference - Volume 48 table of contents
Hobart, Australia
Pages: 303 - 310  
Year of Publication: 2006
ISBN ~ ISSN:1445-1336 , 1-920682-30-9
Authors
Colin Fidge  School of Software Engineering and Data Communications, Queensland University of Technology
Tim McComb  School of Information Technology and Electrical Engineering, The University of Queensland
Publisher
Australian Computer Society, Inc.  Darlinghurst, Australia, Australia
Bibliometrics
Downloads (6 Weeks): 2,   Downloads (12 Months): 9,   Citation Count: 1
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Review this Article  

ABSTRACT

Communications devices intended for use in security-critical applications must be rigorously evaluated to ensure they preserve data confidentiality. This process includes tracing the flow of classified information through the device's circuitry. Previous work has shown how this can be done using graph analysis techniques for each of the device's distinct operating modes. However, such analyses overlook potential information flow between modes, via components that store information in one mode and release it in another. Here we show how graph-based analyses can be extended to allow for information flow through sequences of consecutive modes.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Bishop, M. (2003), Computer Security: Art and Science , Addison-Wesley.
 
2
The Common Criteria Project Sponsoring Organisations (1999), Common Criteria for Information Technology Security Evaluation, 2.1 edn. ISO/IEC Standard 15408.
 
3
Debra S. Herrmann, Using the Common Criteria for It Security Evaluation, CRC Press, Inc., Boca Raton, FL, 2002
 
4
McComb, T. & Wildman, L. P. (2005), SIFA: A tool for evaluation of high-grade security devices, in C. Boyd & J. Nieto, eds, 'Information Security and Privacy: Tenth Australasian Conference (ACISP 2005)', Vol. 3574 of Lecture Notes in Computer Science, Springer-Verlag, pp. 230-241.
5
Steven P. Miller, Specifying the mode logic of a flight guidance system in CoRE and SCR, Proceedings of the second workshop on Formal methods in software practice, p.44-53, March 04-05, 1998, Clearwater Beach, Florida, United States  [doi>10.1145/298595.298856]
 
6
Stephen Paynter, Real-Time Mode-Machines, Proceedings of the 4th International Symposium on Formal Techniques in Real-Time and Fault-Tolerant Systems, p.90-109, September 09-13, 1996
 
7
Rae, A. J. & Fidge, C. J. (2005a), 'Identifying critical components during information security evaluations', Journal of Research and Practice in Information Technology 37(4), 391-402.
 
8
Rae, A. J. & Fidge, C. J. (2005b), 'Information flow analysis for fail-secure devices', The Computer Journal 48(1), 17-26.

CITED BY
M. T. Wynn , C. J. Fidge , A. H. M. ter Hofstede , M. Dumas, Product flow analysis in distribution networks with a fixed time horizon, Proceedings of the thirty-first Australasian conference on Computer science, January 01-01, 2008, Wollongong, Australia

INDEX TERMS

Primary Classification:
  B. Hardware
  B.7 INTEGRATED CIRCUITS
      B.7.1 Types and Design Styles
          Subjects: Algorithms implemented in hardware

Additional Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.0 General
          Subjects: Security and protection (e.g., firewalls)

  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Access controls; Information flow controls


General Terms:
Algorithms, Design, Security

Collaborative Colleagues:
Colin Fidge: colleagues
Tim McComb: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player