Typing access control and secure information flow in sessions

Abstract : We consider a calculus for multiparty sessions with delegation, enriched with security levels for session participants and data. We propose a type system that guarantees both session safety and a form of access control. Moreover, this type system ensures secure information flow, including controlled forms of declassification. In particular, it prevents information leaks due to the specific control constructs of the calculus, such as session opening, selection, branching and delegation. We illustrate the use of our type system with a number of examples, which reveal an interesting interplay between the constraints of security type systems and those used in session types to ensure properties like communication safety and session fidelity.
Document type :
Journal articles
Complete list of metadatas

Cited literature [30 references]  Display  Hide  Download

https://hal.inria.fr/hal-01088782
Contributor : Ilaria Castellani <>
Submitted on : Friday, November 28, 2014 - 4:27:47 PM
Last modification on : Thursday, January 11, 2018 - 4:19:45 PM
Long-term archiving on : Friday, April 14, 2017 - 11:06:16 PM

File

IC-2014.pdf
Files produced by the author(s)

Identifiers

Collections

Citation

Sara Capecchi, Ilaria Castellani, Mariangiola Dezani-Ciancaglini. Typing access control and secure information flow in sessions. Journal of Information and Computation, Elsevier, 2014, 238, pp.68 - 105. ⟨10.1016/j.ic.2014.07.005⟩. ⟨hal-01088782⟩

Share

Metrics

Record views

288

Files downloads

195