CSP and determinism in security modelling (1995) [62 citations — 3 self]
Popular Tags
No tags have been applied to this document.
BibTeX | Add To MetaCart
@INPROCEEDINGS{Roscoe95cspand,author = {A. W. Roscoe},
title = {CSP and determinism in security modelling},
booktitle = {},
year = {1995},
pages = {114--127},
publisher = {Society Press}
}
Years of Citing Articles
Abstract:
We show how a variety of confidentiality properties can be expressed in terms of the abstraction mechanisms that CSP provides. We argue that determinism of the abstracted low-security viewpoint provides the best type of property. By changing the form of abstraction mechanism we are able to model di#erent assumptions about how systems behave, including handling the distinction between input and output actions. A detailed analysis of the nature of nondeterminism shows why certain security properties have had the paradoxical property of not being preserved by refinement-- a disadvantage not shared by the determinism-based conditions. Finally we give an e#cient algorithm for testing the determinism properties on a model-checker.
