Conservation of CSP Noninterference Security under Sequential Composition

Title:	Conservation of CSP Noninterference Security under Sequential Composition
Author:	Pasquale Noce (pasquale /dot/ noce /dot/ lavoro /at/ gmail /dot/ com)
Submission date:	2016-04-26
Abstract:	In his outstanding work on Communicating Sequential Processes, Hoare has defined two fundamental binary operations allowing to compose the input processes into another, typically more complex, process: sequential composition and concurrent composition. Particularly, the output of the former operation is a process that initially behaves like the first operand, and then like the second operand once the execution of the first one has terminated successfully, as long as it does. This paper formalizes Hoare's definition of sequential composition and proves, in the general case of a possibly intransitive policy, that CSP noninterference security is conserved under this operation, provided that successful termination cannot be affected by confidential events and cannot occur as an alternative to other events in the traces of the first operand. Both of these assumptions are shown, by means of counterexamples, to be necessary for the theorem to hold.
BibTeX:	@article{Noninterference_Sequential_Composition-AFP, author = {Pasquale Noce}, title = {Conservation of CSP Noninterference Security under Sequential Composition}, journal = {Archive of Formal Proofs}, month = apr, year = 2016, note = {\url{http://isa-afp.org/entries/Noninterference_Sequential_Composition.html}, Formal proof development}, ISSN = {2150-914x}, }
License:	BSD License
Depends on:	Noninterference_Ipurge_Unwinding
Used by:	Noninterference_Concurrent_Composition
Status: [ok]	This is a development version of this entry. It might change over time and is not stable. Please refer to release versions for citations.

Proof outline
Proof document

Browse theories

Download this entry