More Web Proxy on the site http://driver.im/

article

Free access

A lattice model of secure information flow

Author:

Dorothy E. DenningAuthors Info & Claims

Communications of the ACM, Volume 19, Issue 5

Pages 236 - 243

https://doi.org/10.1145/360051.360056

Published: 01 May 1976 Publication History

Abstract

This paper investigates mechanisms that guarantee secure information flow in a computer system. These mechanisms are examined within a mathematical framework suitable for formulating the requirements of secure information flow among security classes. The central component of the model is a lattice structure derived from the security classes and justified by the semantics of information flow. The lattice properties permit concise formulations of the security requirements of different existing systems and facilitate the construction of mechanisms that enforce security. The model provides a unifying view of all systems that restrict information flow, enables a classification of them according to security objectives, and suggests some new approaches. It also leads to the construction of automatic program certification mechanisms for verifying the secure flow of information through a program.

References

[1]

Andrews, G.R. COPS-a protection mechanism for computer systems. Ph.D. Th., U. of Washington, July 1974.

Digital Library

[2]

Bell, D.E., and LaPadula, L.J. Secure computer systems: mathematical foundations and model. M74-244, The MITRE Corp., Bedford, Mass., May 1973.

[3]

Birkhoff, G. Lattice Theory. Amer. Math. Soc. Col. Pub., XXV, 3rd. ed., 1967.

[4]

Denning, D.E. Secure information flow in computer systems. Ph.D. Th., Purdue U., CSD TR 145, May 1975.

Digital Library

[5]

Denning, D.E., Denning, P.J., and Graham, G.S. Selectively confined subsystems. Proc. International Workshop on Protection in Operating Systems. IRIA, Aug. 1974, pp. 55-61.

[6]

Fenton, J.S. Information protection systems. Ph.D. Th., U. of Cambridge, 1973.

[7]

Fenton, J.S. Memoryless subsystems. Computer J. 17, 2 (May 1974), 143-147.

[8]

Fenton, J.S. An abstract computer model demonstrating directional information flow. U. of Cambridge, 1974.

[9]

Gaines, R.S. An operating system based on the concept of a supervisory computer. Comm. ACM 15, 3 (March 1972), 150-156.

Digital Library

[10]

Gat, I., and Saal, H.J. Memoryless execution: a programmer's viewpoint. IBM Tech. Rep. 025, IBM Israeli Scientific Center, March 1975.

[11]

Graham, G.S., and Denning, P.J. Protection-principles and practice. AFIPS Conf. Proc., Vol. 40, 1972 SJCC, AFIPS Press, Montvale, N.J., pp. 417-429.

[12]

Harrison, M.A., Ruzzo, W.L., and Ullman, J.D. On protection in operating systems. Proc. Fifth Symposium on Operating Systems Principles, The University of Texas at Austin, Nov. 1975, pp. 14-24.

Digital Library

[13]

Jones, A.K. Protection in programmed systems. Ph.D. Th., Carnegie-Mellon U., June 1973.

Digital Library

[14]

Jones, A.K., and Lipton, R.J. The enforcement of security policies for computation. Proc. Fifth Symposium on Operating Systems Principles, The University of Texas at Austin, Nov. 1975, pp. 197-206.

Digital Library

[15]

Lampson, B.W. Protection. Proc. Fifth Princeton Symposium on Information Sciences and Systems, Princeton U., March 1971, pp. 437-443.

[16]

Lampson, B.W. A note on the confinement problem. Comm. ACM 16, 10 (Oct. 1973), 613-615.

Digital Library

[17]

Minsky, M.L. Computation; Finite and Infinite Machines. Prentice-HaU, Engiewood Cliffs, N.J., 1967.

Digital Library

[18]

Organick, E.I. The MULTICS System: An Examination of its Structure, MIT Press, 1972.

Digital Library

[19]

Rotenberg, L.J. Making computers keep secrets. Ph.D. Th., MIT, MAC TR-115, Feb. 1974.

[20]

Schroeder, M.D., and Saltzer, J.H. A hardware architecture for implementing protection rings, Comm. ACM 15, 3 (March 1972), 157-170.

Digital Library

[21]

Stone, H.S. Discrete Mathematical Structures and their Applications. SRI, Chicago 1973.

[22]

Walter, K.G., et al. Modeling the security interface. Rep. No. 1158, Jennings Computing Center, Case Western Reserve U., Aug. 1974.

[23]

Weissman, C. Security controls in the ADEPT-50 time-sharing system. AFIPS Conf. Proc., Vol. 35, 1969 FJCC, AFIPS Press, Montvale, N.J., pp. 417-429.

Digital Library

[24]

Wulf, W., et al. HYDRA: The kernel of a multi-processor system. Comm. ACM 17, 6 (June 1974), 337-345.

Digital Library

Cited By

Stambouli ALogrippo L(2024)Implementation of a Partial-Order Data Security Model for the Internet of Things (IoT) Using Software-Defined Networking (SDN)Journal of Cybersecurity and Privacy10.3390/jcp40300234:3(468-493)Online publication date: 20-Jul-2024
https://doi.org/10.3390/jcp4030023
Timakov A(2024)Description of Paralocks language semantics in TLA+Programmirovanie10.31857/S0132347424010073(88-99)Online publication date: 15-Feb-2024
https://doi.org/10.31857/S0132347424010073
Huang GSchuermann LLevy A(2024)Bridge: A Leak-Free Hardware-Software Architecture for Parallel Embedded SystemsProceedings of the 2nd Workshop on Kernel Isolation, Safety and Verification10.1145/3698576.3698765(16-22)Online publication date: 4-Nov-2024
https://dl.acm.org/doi/10.1145/3698576.3698765
Show More Cited By

A lattice model of secure information flow
1. Security and privacy
  1. Systems security

Recommendations

Certification of programs for secure information flow

ertification mechanism for verifying the secure flow of information through a program. Because it exploits the properties of a lattice structure among security classes, the procedure is sufficiently simple that it can easily be included in the analysis ...
A Security Model Based on Lattice
ICECE '10: Proceedings of the 2010 International Conference on Electrical and Control Engineering

In order to protect confidentiality and integrity of information in the computer information systems, in general, we need to follow some security polices to access and handle information. The BLP model only to resolve the confidentiality problem, and ...
An Application of the (max, +) Algebra to Information Flow Security
ICN '08: Proceedings of the Seventh International Conference on Networking

Confidentiality is one of the most important topics in computer security research. In order to check and ensure confidentiality information flow models are widely used. These models support the specification of valid flows of information. Furthermore, ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image Communications of the ACM

Communications of the ACM Volume 19, Issue 5

May 1976

83 pages

ISSN:0001-0782

EISSN:1557-7317

DOI:10.1145/360051

Editor:
Robert L. Ashenhurst
Univ. of Chicago, Chicago, IL

Issue’s Table of Contents

Copyright © 1976 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 01 May 1976

Published in CACM Volume 19, Issue 5

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1,429
Total Citations
View Citations
8,001
Total Downloads

Downloads (Last 12 months)765
Downloads (Last 6 weeks)120

Reflects downloads up to 13 Dec 2024

Other Metrics

View Author Metrics

Citations

Cited By

Stambouli ALogrippo L(2024)Implementation of a Partial-Order Data Security Model for the Internet of Things (IoT) Using Software-Defined Networking (SDN)Journal of Cybersecurity and Privacy10.3390/jcp40300234:3(468-493)Online publication date: 20-Jul-2024
https://doi.org/10.3390/jcp4030023
Timakov A(2024)Description of Paralocks language semantics in TLA+Programmirovanie10.31857/S0132347424010073(88-99)Online publication date: 15-Feb-2024
https://doi.org/10.31857/S0132347424010073
Huang GSchuermann LLevy A(2024)Bridge: A Leak-Free Hardware-Software Architecture for Parallel Embedded SystemsProceedings of the 2nd Workshop on Kernel Isolation, Safety and Verification10.1145/3698576.3698765(16-22)Online publication date: 4-Nov-2024
https://dl.acm.org/doi/10.1145/3698576.3698765
Khakpour NSkandylas CFilkov VRay BZhou M(2024)Compositional Security Analysis of Dynamic Component-based SystemsProceedings of the 39th IEEE/ACM International Conference on Automated Software Engineering10.1145/3691620.3695499(1232-1244)Online publication date: 27-Oct-2024
https://dl.acm.org/doi/10.1145/3691620.3695499
Ceragioli LGalletta LDegano PBasin D(2024)Specifying and Verifying Information Flow Control in SELinux ConfigurationsACM Transactions on Privacy and Security10.1145/369063627:4(1-35)Online publication date: 7-Oct-2024
https://dl.acm.org/doi/10.1145/3690636
Ameer SPraharaj LSandhu RBhatt SGupta M(2024)ZTA-IoT: A Novel Architecture for Zero-Trust in IoT Systems and an Ensuing Usage Control ModelACM Transactions on Privacy and Security10.1145/367114727:3(1-36)Online publication date: 17-Jun-2024
https://dl.acm.org/doi/10.1145/3671147
Chen TSiek J(2024)Quest Complete: The Holy Grail of Gradual SecurityProceedings of the ACM on Programming Languages10.1145/36564428:PLDI(1609-1632)Online publication date: 20-Jun-2024
https://dl.acm.org/doi/10.1145/3656442
Reiche FWeber TBecker SWeber SHeinrich RBurger ECombemale BWimmer MChechik MEgyed A(2024)Consistency Management for Security Annotations for Continuous VerificationProceedings of the ACM/IEEE 27th International Conference on Model Driven Engineering Languages and Systems10.1145/3652620.3687821(1096-1105)Online publication date: 22-Sep-2024
https://dl.acm.org/doi/10.1145/3652620.3687821
Lamba ATaylor MBeardsley VBambeck JBond MLin Z(2024)Cocoon: Static Information Flow Control in RustProceedings of the ACM on Programming Languages10.1145/36498178:OOPSLA1(166-193)Online publication date: 29-Apr-2024
https://dl.acm.org/doi/10.1145/3649817
Kanyal RSarangi SChua TNgo CKa-Wei Lee RKumar RLauw H(2024)PanoptiChrome: A Modern In-browser Taint Analysis FrameworkProceedings of the ACM Web Conference 202410.1145/3589334.3645699(1914-1922)Online publication date: 13-May-2024
https://dl.acm.org/doi/10.1145/3589334.3645699
Show More Cited By

View Options

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Article

Media

Figures

Other

Tables

View Issue’s Table of Contents