Confidentiality for Probabilistic Multi-Threaded Programs and Its Verification

    Research output: Book/ReportReportProfessional

    164 Downloads (Pure)

    Abstract

    Confidentiality is an important concern in today's information society: electronic payment and personal data should be protected appropriately. This holds in particular for multi-threaded applications, which are generally seen the future of high-performance computing. Multi-threading poses new challenges to data protection, in particular, data races may be exploited in security attacks. Also, the role of the scheduler is seminal in the multi-threaded context. This paper proposes a new notion of confidentiality for probabilistic and non-probabilistic multi-threaded programs, formalized as scheduler-specific probabilistic observational determinism (SSPOD), together with verification methods. Essentially, SSPOD ensures that no information about the private data can be derived either from the public data, or from the probabilities of the public data being changed. Moreover, SSPOD explicitly depends on a given (class of) schedulers. Formally, this is expressed by using two conditions: (i) each publicly visible variable individually behaves deterministically with probability $1$, and (ii) for every trace considering all publicly visible variables, there always exists a matching trace with equal probability. We verify these conditions by a clever combination of new and existing algorithms over probabilistic Kripke structures.
    Original languageEnglish
    Place of PublicationEnschede
    PublisherCentre for Telematics and Information Technology (CTIT)
    Number of pages19
    Publication statusPublished - 12 Dec 2012

    Publication series

    NameCTIT Technical Report Series
    PublisherCentre for Telematics and Information Technology, University of Twente
    No.TR-CTIT-13-01
    ISSN (Print)1381-3625

    Keywords

    • Verfication
    • Scheduler-specific
    • Algorithm
    • ConfidentialityScheduler-specificObservational determinismVerficationAlgorithm
    • Confidentiality
    • Observational determinism

    Fingerprint

    Dive into the research topics of 'Confidentiality for Probabilistic Multi-Threaded Programs and Its Verification'. Together they form a unique fingerprint.
    • Confidentiality for Probabilistic Multi-Threaded Programs and Its Verification

      Ngo, M. T., Stoelinga, M. & Huisman, M., Feb 2013, Proceedings of the 5th International Conference on Engineering Secure Software and Systems, ESSoS 2013. London: Springer, p. 107-122 16 p. (Lecture Notes in Computer Science; no. 7781).

      Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

      Open Access
      File
      14 Citations (Scopus)
      48 Downloads (Pure)

    Cite this