Information Leakage as a Scheduling Resource

Fabrizio Biondi 1, 2 Mounir Chadli 1 Thomas Given-Wilson 1 Axel Legay 1
1 TAMIS - Threat Analysis and Mitigation for Information Security
Inria Rennes – Bretagne Atlantique , IRISA_D4 - LANGAGE ET GÉNIE LOGICIEL
2 CentraleSupélec
Abstract : High-security processes have to load confidential information into shared resources as part of their operation. This confidential information may be leaked (directly or indirectly) to low-security processes via the shared resource. This paper considers leakage from high-security to low-security processes from the perspective of scheduling. The workflow model is here extended to support preemption, security levels, and leakage. Formalization of leakage properties is then built upon this extended model, allowing formal reasoning about the security of schedulers. Several heuristics are presented in the form of compositional preprocessors and postprocessors as part of a more general scheduling approach. The effectiveness of such heuristics are evaluated experimentally, showing them to achieve significantly better schedulability than the state of the art. Modeling of leakage from cache attacks is presented as a case study.
Type de document :
Communication dans un congrès
International Workshop on Formal Methods for Industrial Critical Systems and Automated Verification of Critical Systems, Sep 2017, Turin, Italy. International Workshop on Formal Methods for Industrial Critical Systems and Automated Verification of Critical Systems, 2017, 〈http://www.es.mdh.se/conferences/fmics-avocs-2017/〉
Liste complète des métadonnées

Littérature citée [25 références]  Voir  Masquer  Télécharger
https://hal.inria.fr/hal-01382052
Contributeur : Thomas Given-Wilson <>
Soumis le : vendredi 7 juillet 2017 - 10:43:13
Dernière modification le : mercredi 16 mai 2018 - 11:24:14

Fichier

main.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-01382052, version 2

Collections

IRISA | INRIA2017 | INRIA | UR1-UFR-ISTIC | CHAIRE-CYBERSECURITE | UNIV-RENNES | CENTRALESUPELEC

Citation

Fabrizio Biondi, Mounir Chadli, Thomas Given-Wilson, Axel Legay. Information Leakage as a Scheduling Resource. International Workshop on Formal Methods for Industrial Critical Systems and Automated Verification of Critical Systems, Sep 2017, Turin, Italy. International Workshop on Formal Methods for Industrial Critical Systems and Automated Verification of Critical Systems, 2017, 〈http://www.es.mdh.se/conferences/fmics-avocs-2017/〉. 〈hal-01382052v2〉

Exporter

BibTeX TEI DC DCterms EndNote

Partager

Métriques

Consultations de la notice

269

Téléchargements de fichiers

113

Contact


archive-ouverte@inria.fr