describing secure interfaces with interface automata
play

Describing Secure Interfaces with Interface Automata Matias Lee - PowerPoint PPT Presentation

Dec 23, 2023 •7 likes •517 views

Interfaces Structure for Security Deriving secure ISS Preserving BSNNI after Composition Contribution and future works Describing Secure Interfaces with Interface Automata Matias Lee Pedro R. DArgenio FaMAF - UNC CONICET FESCA Workshop

  1. Interfaces Structure for Security Deriving secure ISS Preserving BSNNI after Composition Contribution and future works Describing Secure Interfaces with Interface Automata Matias Lee Pedro R. D’Argenio FaMAF - UNC CONICET FESCA Workshop Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  2. Interfaces Structure for Security Deriving secure ISS Preserving BSNNI after Composition Contribution and future works Outline Interfaces Structure for Security 1 Interfaces Automata and Interface Structure For Security Composition Bisimulation-based (Strong) Non-deterministic Non-interference Deriving secure ISS 2 Checking BSNNI Synthesizing Secure ISS The algorithm - Example Preserving BSNNI after Composition 3 Preserving BSNNI after Composition Contribution and future works 4 Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  3. Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference Outline Interfaces Structure for Security 1 Interfaces Automata and Interface Structure For Security Composition Bisimulation-based (Strong) Non-deterministic Non-interference Deriving secure ISS 2 Checking BSNNI Synthesizing Secure ISS The algorithm - Example Preserving BSNNI after Composition 3 Preserving BSNNI after Composition Contribution and future works 4 Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  4. � � � � � � � Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference Interface Automata (IA): We use Interface Automata [De Alfaro, Hezinger 2001,2005] to represent interfaces. E.g.: endT ? acceptT? newT ? � startT ! � s 1 s 2 s 3 endM ? startM ? newT ? � startT ! � s 4 s 5 s 6 s 7 logM ! endT ? IA has three different sorts of actions: input, output and hidden . As usual, input are suffixed by ? and output by ! . We indicate hidden actions by suffixing ; . Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  5. � � � � � � � Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference Interface Structure for Security (ISS) Extends IA to cope with security. Visible actions are separated in two classes: public or low: can be observed/manipulated by any user private or high: only for users with appropiate clearance. endT ? acceptT? newT ? � startT ! � s 1 s 2 s 3 endM? startM? newT ? � startT ! � s 5 s 6 s 4 s 7 logM! endT ? High actions are underlined Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  6. Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference Why IA and ISS? Component Based Development and Design has become main approach for software development. Example: web services . We need good interface description that allows us to analyze interaction between components. In this way, we can predict if the composed system can satisfy our requirements. IA captures temporal aspects of the component interface. This framework requires that the communication is properly carried out by the interfaces. ISS inherits the properties of IA and also allows us to study properties related with secure data flow. Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  7. Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference Example: A distributed transaction processing system (DTPS): a main server ( Transaction Service ) that provides a service a remote transaction process unit ( Trans. Processing Unit ) a supervisor module ( Supervisor ). Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  8. � � � � � � � � � � � � � � � � � Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference Transaction Service Trans. Processing Unit endT ? acceptT? newT ? � startT ! � startT ? � nOk ! � s 3 s 1 s 2 t 1 t 2 t 4 endM? startM? ok ! endT ! logF ! newT ? � startT ! � s 4 s 5 s 6 t 3 s 7 logM! endT ? Supervisor logM? logF? mOn? � startM! � u 3 u 1 u 2 endM! logF ? u 5 u 4 logM? Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  9. Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference We are interested in studying how the components work together. Therefore, we need a concept of composition. Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  10. Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference Outline Interfaces Structure for Security 1 Interfaces Automata and Interface Structure For Security Composition Bisimulation-based (Strong) Non-deterministic Non-interference Deriving secure ISS 2 Checking BSNNI Synthesizing Secure ISS The algorithm - Example Preserving BSNNI after Composition 3 Preserving BSNNI after Composition Contribution and future works 4 Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  11. Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference Composition CSP likes parallel composition in IA: the state space is the product of the set of states of the components, synchronization through shared action, i.e. both component should perform a transition with the same synchronizing label (one input, and the other output), and transitions with non-shared actions are interleaved. Besides, shared actions are hidden in the product. Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  12. � � � � � � � � � � � � � � � � � � � � � � � � Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference s 2 t 1 u 2 s 3 t 3 u 2 s 3 t 4 u 2 startT ; nOk ! newT ? acceptT ? acceptT ? mOn? startM ; s 1 t 1 u 1 s 1 t 1 u 2 s 4 t 1 u 3 endM ; endT ; newT ? logM ; newT ? s 3 t 3 u 1 s 2 t 1 u 1 s 4 t 1 u 5 s 7 t 1 u 3 s 5 t 1 u 3 ok ! logF ; startT ; logM ; endT ; startT ; nOk ! ok ! s 3 t 4 u 1 s 3 t 2 u 1 s 7 t 1 u 4 s 6 t 3 u 3 s 6 t 2 u 3 endT ; nOk ! logF ; s 6 t 3 u 4 s 6 t 4 u 3 Matias Lee, Pedro R. D’Argenio Interface Structure for Security

  13. Interfaces Structure for Security Interfaces Automata and Interface Structure For Security Deriving secure ISS Why IA and ISS? Preserving BSNNI after Composition Composition Contribution and future works Bisimulation-based (Strong) Non-deterministic Non-interference Error, Incompatible and Compatible states In state s 3 t 4 u 2 , the TP unit sends a message (LogF!) to the Supervisor, which is not ready to receive it. We call this miscommunication . The state s 3 t 4 u 2 is an error state. States s 3 t 3 u 2 and s 2 t 1 u 2 are incompatibles states because they reach an error/incompatible state autonomously (i.e. using only output and/or hidden actions). A state that is not incompatible is called compatible. For example, s 1 t 1 u 2 is compatible. If the initial state of the product is compatible, then the interfaces are compatible. Matias Lee, Pedro R. D’Argenio Interface Structure for Security

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Interfaces Interfaces interface : A list of methods that a class promises to implement.

Interfaces Interfaces interface : A list of methods that a class promises to implement.

Interfaces Interfaces interface : A list of methods that a class promises to implement. Interfaces give you an is-a relationship without code sharing. Only method stubs in the interface Allows object with no common ancestor to act

268 views • 13 slides
Interfaces Interfaces n interface : A list of methods that a class promises to implement. q

Interfaces Interfaces n interface : A list of methods that a class promises to implement. q

10/21/12 Interfaces Interfaces n interface : A list of methods that a class promises to implement. q Interfaces give you an is-a relationship without code sharing. Only method stubs in the interface n Allows object with no common

420 views • 7 slides
Interface Objectives Discuss interfaces concept definition implementation

Interface Objectives Discuss interfaces concept definition implementation

Interface Objectives Discuss interfaces concept definition implementation support for generic code 2 Interface An interface defines a specification also called contract A class can agree to abide by the

561 views • 27 slides
Network Interfaces & ifconfig what is a network interface? Associated with a hardware

Network Interfaces & ifconfig what is a network interface? Associated with a hardware

Network Interfaces & ifconfig what is a network interface? Associated with a hardware device device fxp0 - Intel EtherExpress Pro Practical Networking Sometimes not loopback interface lo0 - pseudo-device Interfaces

154 views • 3 slides
Two approaches to writing interfaces Interface projected from implementation: No

Two approaches to writing interfaces Interface projected from implementation: No

Two approaches to writing interfaces Interface projected from implementation: No separate interface Compiler extracts from implementation (CLU, Java class , Haskell) When code changes, must extract again Few cognitive

470 views • 21 slides
Interfaces Shuang LIANG, SSE, Spring 2013 Todays Topics Interface types highlight the

Interfaces Shuang LIANG, SSE, Spring 2013 Todays Topics Interface types highlight the

Chapter 6 Interfaces Shuang LIANG, SSE, Spring 2013 Todays Topics Interface types highlight the main design and research issues for each of the different interfaces Consider which interface is best for a given application or

1.37k views • 105 slides
Advanced Programming Graphical User Interface (GUI) Human-Machine Interfaces The ways in which a

Advanced Programming Graphical User Interface (GUI) Human-Machine Interfaces The ways in which a

Advanced Programming Graphical User Interface (GUI) Human-Machine Interfaces The ways in which a software system interacts with its users . Command Line Graphical User Interface - GUI Touch User Interface - TUI Multimedia (voice, animation,

690 views • 49 slides
CCL/Cocoa Interfaces Paul Krueger, Ph.D. November, 2009 Interface Goals: Looks native to

CCL/Cocoa Interfaces Paul Krueger, Ph.D. November, 2009 Interface Goals: Looks native to

CCL/Cocoa Interfaces Paul Krueger, Ph.D. November, 2009 Interface Goals: Looks native to platform Development effort commensurate with interface complexity Easy blending with Lisp code Usable in either stand-alone executables or from within

452 views • 16 slides
CSSE 220 Event Based Programming Check out EventBasedProgramming2 from SVN Interfaces - Review

CSSE 220 Event Based Programming Check out EventBasedProgramming2 from SVN Interfaces - Review

CSSE 220 Event Based Programming Check out EventBasedProgramming2 from SVN Interfaces - Review Interfaces are contracts Any class that implements an interface MUST provide an implementation for all methods defined in the interface.

317 views • 16 slides
CS 349: User Interfaces This course focusses on creating user interfaces (UIs), including

CS 349: User Interfaces This course focusses on creating user interfaces (UIs), including

CS 349: User Interfaces This course focusses on creating user interfaces (UIs), including underlying UI architecture and algorithms, practice implementing UIs using frameworks, and theories and methods relevant to interface design.

378 views • 23 slides
CS 349: User Interfaces This course focuses on creating user interfaces (UIs), including

CS 349: User Interfaces This course focuses on creating user interfaces (UIs), including

CS 349: User Interfaces This course focuses on creating user interfaces (UIs), including underlying UI architecture and algorithms, practice implementing UIs using frameworks, and theories and methods relevant to interface design.

600 views • 20 slides
CS 349: User Interfaces This course focusses on creating user interfaces (UIs), including

CS 349: User Interfaces This course focusses on creating user interfaces (UIs), including

CS 349: User Interfaces This course focusses on creating user interfaces (UIs), including underlying UI architecture and algorithms, practice implementing UIs using frameworks, and theories and methods relevant to interface design.

603 views • 24 slides
CSSE 220 Event Based Programming Import EventBasedProgramming from the repo Interfaces - Review

CSSE 220 Event Based Programming Import EventBasedProgramming from the repo Interfaces - Review

CSSE 220 Event Based Programming Import EventBasedProgramming from the repo Interfaces - Review Interfaces are contracts Any class that implements an interface MUST provide an implementation for all methods defined in the interface.

462 views • 24 slides
ImAc production tools Accessibility Secure access and according to profile permissions Web

ImAc production tools Accessibility Secure access and according to profile permissions Web

ImAc production tools Accessibility Secure access and according to profile permissions Web based and responsive interfaces for universal user access Content Manger Multi-language interface (ACM) Automatic background processes such

202 views • 5 slides
Java Interfaces } An interface is more abstract than a class } Almost always completely abstract in

Java Interfaces } An interface is more abstract than a class } Almost always completely abstract in

Java Interfaces } An interface is more abstract than a class } Almost always completely abstract in specification } Not an actual class to be inherited KeyListener {interface} No constructor (not a class at all) Class #36: + void keyPressed(

53 views • 3 slides
Hard Drives, Storage Media and File Systems Interface Two most common types of interfaces

Hard Drives, Storage Media and File Systems Interface Two most common types of interfaces

1 Hard Drives, Storage Media and File Systems Interface Two most common types of interfaces SCSI: Small Computer Systems Interface (servers and high-performance desktops) IDE/ATA: Integrated Drive Electronics (PC workstation) 2

1.24k views • 74 slides
2017-2018 2017-2018 Board of Directors Meeting Business Plan & Budget Review May 18, May

2017-2018 2017-2018 Board of Directors Meeting Business Plan & Budget Review May 18, May

CAL POLY POMONA FOUNDATION Budget Presentation 2014-2015 CAL POLY POMONA FOUNDATION 2017-2018 2017-2018 Board of Directors Meeting Business Plan & Budget Review May 18, May 18, 2017 2017 POLICY NO. 118 Foundation Budget Process

689 views • 39 slides
Federal Facilities and the Districts Phase III WIP Training for Federal Facilities Located in

Federal Facilities and the Districts Phase III WIP Training for Federal Facilities Located in

Federal Facilities and the Districts Phase III WIP Training for Federal Facilities Located in the District of Columbia Washington, DC May 31, 2018 Jeff Sweeney Katherine Antos, Branch Chief Integrated Analysis Coordinator Partnering &

785 views • 15 slides
Six months ended 31 December 2010 Interim Result Presentation 25 February 2011 Agenda Agenda

Six months ended 31 December 2010 Interim Result Presentation 25 February 2011 Agenda Agenda

1 Six months ended 31 December 2010 Interim Result Presentation 25 February 2011 Agenda Agenda Executive Summary & Business Highlights Operational Performance Interim Financial Result Priorities & Outlook Questions

536 views • 32 slides
Errors and optics study of a permanent magnet quadrupole system F. Schillaci IoP-ASCR,

Errors and optics study of a permanent magnet quadrupole system F. Schillaci IoP-ASCR,

Errors and optics study of a permanent magnet quadrupole system F. Schillaci IoP-ASCR, ELI-Beamlines Prague, Czech Republic And MEDical application @ ELI-Beamlines INFN-LNS Catania, Italy 25 th International Conference on Magnet Technology,

859 views • 51 slides
HALDIMAND COUNTY 2017 Tax Supported Operating Budget Committee of the Whole March 7, 2017

HALDIMAND COUNTY 2017 Tax Supported Operating Budget Committee of the Whole March 7, 2017

HALDIMAND COUNTY 2017 Tax Supported Operating Budget Committee of the Whole March 7, 2017 Council Approved Budget Guidelines When establishing/approving the annual budget guidelines, a four year projection (2015 to 2018) was provided to

116 views • 8 slides
PRESENTATION OUTLINE Consolidated Financial Results and Forecast Summary Fiscal Year March

PRESENTATION OUTLINE Consolidated Financial Results and Forecast Summary Fiscal Year March

FISCAL YEAR MARCH 2016 FINANCIAL RESULTS 1 PRESENTATION OUTLINE Consolidated Financial Results and Forecast Summary Fiscal Year March 2016 Results Fiscal Year March 2017 Forecast Structural Reform Plan Review Structural

240 views • 22 slides
WEYERHAEUSER INVESTOR MEETINGS March 2015 0 FORWARD-LOOKING STATEMENTS AND NON-GAAP FINANCIAL

WEYERHAEUSER INVESTOR MEETINGS March 2015 0 FORWARD-LOOKING STATEMENTS AND NON-GAAP FINANCIAL

WEYERHAEUSER INVESTOR MEETINGS March 2015 0 FORWARD-LOOKING STATEMENTS AND NON-GAAP FINANCIAL MEASURES This presentation contains statements that are forward-looking statements within the meaning of the Private Securities Litigation Reform Act

675 views • 36 slides
Earnings Conference Call 4 th Quarter 2013 February 6 th , 2014 Cautionary Statements Regarding

Earnings Conference Call 4 th Quarter 2013 February 6 th , 2014 Cautionary Statements Regarding

Earnings Conference Call 4 th Quarter 2013 February 6 th , 2014 Cautionary Statements Regarding Forward-Looking Information This presentation contains certain forward-looking statements within the meaning of the Private Securities Litigation

682 views • 43 slides

More recommend