Quantitative Security Analysis for Multi-threaded Programs
Quantitative theories of information flow give us an approach to relax the absolute confidentiality properties that are difficult to satisfy for many practical programs. The classical information-theoretic approaches for sequential programs, where the program is modeled as a communication channel wi...
Main Authors: | , |
---|---|
Format: | Article |
Language: | English |
Published: |
Open Publishing Association
2013-06-01
|
Series: | Electronic Proceedings in Theoretical Computer Science |
Online Access: | http://arxiv.org/pdf/1306.2693v1 |
id |
doaj-d2146c5f57ec4c62b2aa65a0ea69bf7b |
---|---|
record_format |
Article |
spelling |
doaj-d2146c5f57ec4c62b2aa65a0ea69bf7b2020-11-24T23:29:42ZengOpen Publishing AssociationElectronic Proceedings in Theoretical Computer Science2075-21802013-06-01117Proc. QAPL 2013344810.4204/EPTCS.117.3Quantitative Security Analysis for Multi-threaded ProgramsTri Minh NgoMarieke HuismanQuantitative theories of information flow give us an approach to relax the absolute confidentiality properties that are difficult to satisfy for many practical programs. The classical information-theoretic approaches for sequential programs, where the program is modeled as a communication channel with only input and output, and the measure of leakage is based on the notions of initial uncertainty and remaining uncertainty after observing the final outcomes, are not suitable to multi-threaded programs. Besides, the information-theoretic approaches have been also shown to conflict with each other when comparing programs. Reasoning about the exposed information flow of multi-threaded programs is more complicated, since the outcomes of such programs depend on the scheduler policy, and the leakages in intermediate states also contribute to the overall leakage of the program. This paper proposes a novel model of quantitative analysis for multi-threaded programs that also takes into account the effect of observables in intermediate states along the trace. We define a notion of the leakage of a program trace. Given the fact that the execution of a multi-threaded program is typically described by a set of traces, the leakage of a program under a specific scheduler is computed as the expected value of the leakages of all possible traces. Examples are given to compare our approach with the existing approaches.http://arxiv.org/pdf/1306.2693v1 |
collection |
DOAJ |
language |
English |
format |
Article |
sources |
DOAJ |
author |
Tri Minh Ngo Marieke Huisman |
spellingShingle |
Tri Minh Ngo Marieke Huisman Quantitative Security Analysis for Multi-threaded Programs Electronic Proceedings in Theoretical Computer Science |
author_facet |
Tri Minh Ngo Marieke Huisman |
author_sort |
Tri Minh Ngo |
title |
Quantitative Security Analysis for Multi-threaded Programs |
title_short |
Quantitative Security Analysis for Multi-threaded Programs |
title_full |
Quantitative Security Analysis for Multi-threaded Programs |
title_fullStr |
Quantitative Security Analysis for Multi-threaded Programs |
title_full_unstemmed |
Quantitative Security Analysis for Multi-threaded Programs |
title_sort |
quantitative security analysis for multi-threaded programs |
publisher |
Open Publishing Association |
series |
Electronic Proceedings in Theoretical Computer Science |
issn |
2075-2180 |
publishDate |
2013-06-01 |
description |
Quantitative theories of information flow give us an approach to relax the absolute confidentiality properties that are difficult to satisfy for many practical programs. The classical information-theoretic approaches for sequential programs, where the program is modeled as a communication channel with only input and output, and the measure of leakage is based on the notions of initial uncertainty and remaining uncertainty after observing the final outcomes, are not suitable to multi-threaded programs. Besides, the information-theoretic approaches have been also shown to conflict with each other when comparing programs. Reasoning about the exposed information flow of multi-threaded programs is more complicated, since the outcomes of such programs depend on the scheduler policy, and the leakages in intermediate states also contribute to the overall leakage of the program. This paper proposes a novel model of quantitative analysis for multi-threaded programs that also takes into account the effect of observables in intermediate states along the trace. We define a notion of the leakage of a program trace. Given the fact that the execution of a multi-threaded program is typically described by a set of traces, the leakage of a program under a specific scheduler is computed as the expected value of the leakages of all possible traces. Examples are given to compare our approach with the existing approaches. |
url |
http://arxiv.org/pdf/1306.2693v1 |
work_keys_str_mv |
AT triminhngo quantitativesecurityanalysisformultithreadedprograms AT mariekehuisman quantitativesecurityanalysisformultithreadedprograms |
_version_ |
1725544273557848064 |