M. Hennessy. The security -calculus and noninterference. Computer Science Technical Report 2000:05, University of Sussex, 2000.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....sophisticated practical languages. 22 The question of secure information ow and noninterference has also been investigated in the setting of process calculi [5, 15] More recently, there have been studies on noninterference for functional languages [14] and mobile process calculi [9] 8] and [7]. The latter papers are closer to our work, as they use a type system to enforce noninterference. The treatment in [9] and [8] however, seems overly restrictive: it amounts (at least in the core calculus) to forbid all control ow from actions on high channels to actions on low channels. In [9] ....

....on high channels to actions on low channels. In [9] the core calculus is extended with more sophisticated constructs; in the extended calculus some actions may be classi ed as innocuous , and the restriction on control ow may be relaxed when these actions are involved. The papers [14] and [7] are less restrictive and closer in spirit to our approach, as they try to distinguish the dangerous control ow (implementing information ow) from the harmless control ow which should not be restricted. Another related paper is [1] which studies secrecy properties in security protocols ....

M. Hennessy. The security -calculus and noninterference. Computer Science Technical Report

....based on performance simulations of 11 benchmarks from the SPEC95 and SPEC2000. We begin by describing the simulation environment, simulated microarchitectures and selected benchmarks. 5.1 Experimental Setup 5.1. 1 Performance Functional Simulator We used a modified version of SimpleScalar [4] for both performance and functional simulations. We modified the stock out of order simulator to implement instruction replication, fault detection and recovery schemes as described in Sections 3. We also introduced a fault injection module that can randomly corrupt some instructions based on ....

D. Burger and T. M. Austin. The SimpleScalar tool set, version 2.0. Technical Report 1342, University of WisconsinMadison, Computer Sciences Technical Report, 1997.

....to a fairly standard language, which can be assumed to be the kernel of more sophisticated practical languages. The question of secure AEow and noninterference has also started to be investigated in the setting of process calculi, and in particular in mobile process calculi [5] 6] 9] and [4]. The treatment in the rst two papers seems however overly restrictive: it amounts (at least in the core calculus) to forbid all control AEow from actions on high channels to actions on low channels. In [6] the core calculus is extended with more sophisticated constructs; in the extended calculus ....

....high channels to actions on low channels. In [6] the core calculus is extended with more sophisticated constructs; in the extended calculus some actions may be classied as iinnocuousj, and the restriction on control AEow may be relaxed when these actions are involved. The last two papers, 9] and [4], are less restrictive and closer in spirit to our approach, as they try to distinguish the dangerous control AEow (implementing information AEow) from the harmless control AEow which should not be restricted. Another related paper is [1] which studies secrecy properties in security protocols ....

M. Hennessy. The security -calculus and noninterference. Computer Science Technical Report

....of risk, possibility of loss, is too generic to act as a operational definition on a detail level during risk analysis. Finally, hardly any recognize the dangers associated with not accounting for the possible nonlinearity of the utility functions, as we have discussed in a separate paper [19]. Given all these potential limitations, it is not surprising that practitioners see limited added value in applying defined risk management techniques. They may not be much worse off by relying on intuition. Third, while there are several anecdotal descriptions of managing risks in practice ....

.... support qualitative analysis of risk scenarios before quantification is attempted, its risk ranking approach can be selected based on the availability of history data or accuracy of estimates, it supports multiple goals and stakeholders, and its risk ranking approach is based on the utility theory [19]. A central part of the Riskit method the graphical formalism used to document risks, the Riskit analysis graph. The Riskit analysis graph is used to define the different aspects of risk explicitly and more formally than is done in casual conversation. The Riskit analysis graph is primarily a ....

[Article contains additional citation context not shown here]

J. Kontio, The Riskit Method for Software Risk Management, version 1.00, 1996. Computer Science Technical Reports. University of Maryland. College park, MD.

.... support qualitative analysis of risk scenarios before quantification is attempted, its risk ranking approach can be selected based on the availability of history data or accuracy of estimates, it supports multiple goals and stakeholders, and its risk ranking approach is based on the utility theory [20]. We have presented an overview of the activities in the Riskit process in Figure 1. More information about the method is available in separate reports [20 22] A central part of the Riskit method is the graphical formalism used to document risks, the Riskit analysis graph. The Riskit analysis ....

....data or accuracy of estimates, it supports multiple goals and stakeholders, and its risk ranking approach is based on the utility theory [20] We have presented an overview of the activities in the Riskit process in Figure 1. More information about the method is available in separate reports [20 22]. A central part of the Riskit method is the graphical formalism used to document risks, the Riskit analysis graph. The Riskit analysis graph is used to define the different aspects of risk explicitly and more formally than is done in casual conversation. The Riskit analysis graph is used during ....

[Article contains additional citation context not shown here]

J. Kontio, The Riskit Method for Software Risk Management, version 1.00 Anonymous1996. Computer Science Technical Reports. University of Maryland. College park, MD.

No context found.

M. Hennessy. The security -calculus and noninterference. Computer Science Technical Report 2000:05, University of Sussex, 2000.

No context found.

D. Burger and T. M. Austin. The SimpleScalar tool set, version 2.0. Technical Report 1342, University of WisconsinMadison, Computer Sciences Technical Report, 1997.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC