Unifying Facets of Information Integrity
Paper in proceeding, 2010
Information integrity is a vital security property in a variety of applications. However, there is more than one facet to integrity: interpretations of integrity in different contexts include integrity via information flow, where the key is that trusted output is independent from untrusted input, and integrity via invariance, where the key is preservation of an invariant. Furthermore, integrity via invariance is itself multi-faceted. For example, the literature features formalizations of invariance as predicate preservation (predicate invariance), which is not directly compatible with invariance of memory values (value invariance).
This paper offers a unified framework for integrity policies that include all of the facets above. Despite the different nature of these facets, we show that a straightforward enforcement mechanism adapted from the literature is readily available for enforcing all of the integrity facets at once.
information flow
information security
integrity
program correctness
Author
Arnar Birgisson
Chalmers, Computer Science and Engineering (Chalmers), Software Engineering and Technology (Chalmers)
Alejandro Russo
Chalmers, Computer Science and Engineering (Chalmers), Software Engineering and Technology (Chalmers)
Andrei Sabelfeld
Chalmers, Computer Science and Engineering (Chalmers), Software Engineering and Technology (Chalmers)
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
03029743 (ISSN) 16113349 (eISSN)
Vol. 6503 48-65978-364217713-2 (ISBN)
Subject Categories
Software Engineering
DOI
10.1007/978-3-642-17714-9_5
ISBN
978-364217713-2