Abstract
We describe Bounded-Deducibility (BD) security, an expressive framework for the specification and verification of information-flow security. The framework grew by confronting concrete challenges of specifying and verifying fine-grained confidentiality properties in some realistic web-based systems. The concepts and theorems that constitute this framework have an eventful history of such "confrontations", often involving trial and error, which are reported in previous papers. This paper is the first to focus on the framework itself rather than the case studies, gathering in one place all the abstract results about BD security.
Original language | English |
---|---|
Title of host publication | 12th International Conference on Interactive Theorem Proving, ITP 2021, June 29 to July 1, 2021, Rome, Italy (Virtual Conference) |
Editors | Liron Cohen, Cezary Kaliszyk |
Publisher | Dagstuhl |
Pages | 3:1-3:20 |
DOIs | |
Publication status | Published - 21 Jun 2021 |
Event | 12th International Conference on Interactive Theorem Proving, ITP 2021 - Online Conference Duration: 29 Jun 2021 → 1 Jul 2021 Conference number: 12 |
Conference
Conference | 12th International Conference on Interactive Theorem Proving, ITP 2021 |
---|---|
Abbreviated title | ITP 2021 |
City | Online Conference |
Period | 29/06/21 → 1/07/21 |