Whenever data is communicated outside a security domain there is the risk that it may influence data coming back in a way that is not permitted by the security domain. This may arise when different security domains relate to different parallel processes that exchange information through communication. We provide general definitions of the demands on the communication and sanitisation primitives so as to mitigate the risk. For interesting instantiations of these definitions we provide algorithms for checking that the demands have been met. The development is illustrated by a worked example dealing with the outsourcing of data management to the cloud.
|Titel||Protocols, Strands, and Logic : Essays Dedicated to Joshua Guttman on the Occasion of his 66.66th Birthday|
|Redaktører||Daniel Dougherty, José Meseguer, Sebastian Alexander Mödersheim, Paul Rowe|
|Status||Udgivet - 2021|
|Navn||Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)|
Bibliografisk noteFunding Information:
Acknowledgement. The first author was supported in part by the EU H2020-SU-ICT-03-2018 Project No. 830929 CyberSec4Europe (cybersec4europe.eu). The first and second authors were supported in part by the Danish project Security by Design granted by The Danish Industry Foundation. The third author is retired from the Department of Mathematics and Computer Science, Technical University of Denmark, Kgs. Lyngby, Denmark.
© 2021, Springer Nature Switzerland AG.