Skip to Main content Skip to Navigation
Conference papers

Uniform Protection for Multi-exposed Targets

Abstract : Ensuring that information is protected proportionately to its value is a major challenge in the development of robust distributed systems, where code complexity and technological constraints might allow reaching a key functionality along various paths. We propose a protection analysis over the Quality Calculus that computes the combinations of data required to reach a program point and relates them to a notion of cost. In this way, we can compare the security deployed on different paths that expose the same resource. The analysis is formalised in terms of flow logic, and is implemented as an optimisation problem encoded into Satisfiability Modulo Theories, allowing us to deal with complex cost structures. The usefulness of the approach is demonstrated on the study of password recovery systems.
Complete list of metadata

Cited literature [16 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Wednesday, November 16, 2016 - 3:37:17 PM
Last modification on : Wednesday, November 16, 2016 - 4:23:24 PM
Long-term archiving on: : Thursday, March 16, 2017 - 2:49:04 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Roberto Vigo, Flemming Nielson, Hanne Riis Nielson. Uniform Protection for Multi-exposed Targets. 34th Formal Techniques for Networked and Distributed Systems (FORTE), Jun 2014, Berlin, Germany. pp.182-198, ⟨10.1007/978-3-662-43613-4_12⟩. ⟨hal-01398016⟩



Record views


Files downloads