Breaking the Model: Finalisation and a Taxonomy of Security Attacks |
| |
| Authors: | John A. Clark Susan Stepney Howard Chivers |
| |
| Affiliation: | Department of Computer Science, University of York, Heslington, York, YO10 5DD, UK |
| |
| Abstract: | It is well known that security properties are not preserved by refinement, and that refinement can introduce new, covert, channels, such as timing channels. The finalisation step in refinement can be analysed to identify some of these channels, as unwanted finalisations that can break the assumptions of the formal model. We introduce a taxonomy of such unwanted finalisations, and give examples of attacks that exploit them. |
| |
| Keywords: | Finalisation observed system security model assumptions |
| 本文献已被 ScienceDirect 等数据库收录! |
|
