Reasoning about Security in Mobile Ambients
نویسندگان
چکیده
The paper gives an assessment of security for Mobile Ambients, with specific focus on mandatory access control (MAC) policies in multilevel security systems. The first part of the paper reports on different formalization attempts for MAC policies in the Ambient Calculus, and provides an in-depth analysis of the problems one encounters. As it turns out, MAC security does not appear to have fully convincing interpretations in the calculus. The second part proposes a solution to this impasse, based on a variant of Mobile Ambients. A type system for resource access control is defined, and the new calculus is discussed and illustrated with several examples of resource management policies. In CONCUR 2001, Lecture Notes in Computer Science, 2154:102{120, c Springer, 2001.
منابع مشابه
Expressing Mobile Ambients in Temporal Logic of Actions
text Temporal logic of actions is a logic for specifying and reasoning about concurrent systems, developed mainly for verification. Ambient calculus is a formalism for describing mobility and distributed computation. We express mobile ambients in temporal logic of actions, provide some results and illustrate the description through examples. Finally we give an implementation of mobile ambients ...
متن کاملBoundary Inference for Enforcing Security Policies in Mobile Ambients
The notion of “boundary ambient” has been recently introduced to model multilevel security policies in the scenario of mobile systems, within pure Mobile Ambients calculus. Information flow is defined in terms of the possibility for a confidential ambient/data to move outside a security boundary, and boundary crossings can be captured through a suitable Control Flow Analysis. We show that this ...
متن کاملAn overview of Boxed Ambients
In this lecture we present some work we published in [2,3] and hint at some new current lines of research on information flow and security. More precisely, we describe the calculus of Boxed Ambients a variant of Cardelli and Gordon’s Mobile Ambients[4] a calculus of mobile and dynamically reconfigurable agents. Boxed Ambients inherit from Mobile Ambients (part of) the mobility primitives but re...
متن کاملSecure Safe Ambients and JVM Security
Safe Ambients are a variant of Cardelli and Gordon’s Mobile Ambients [CG98] proposed by Levi and Sangiorgi in [LS00]. The two calculi differ in the underlying notion of interaction: in Mobile Ambients interaction between ambients are “one-sided”, in that one of the two partners in a move or open action simply undergoes the action. In Safe ambients, instead, the reduction relation requires actio...
متن کاملSecurity Types for Mobile Safe Ambients
The Ambient Calculus and the Safe Ambient Calculus have been recently successfully proposed as models for the Web. They are based on the notions of ambient movement and ambient opening. Different type disciplines have been devised for them in order to avoid un-wanted behaviours of processes. In the present paper we propose a type discipline for safe mobile ambi-ents which is essentially motivat...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2001