Security Types for Mobile Safe Ambients
نویسندگان
چکیده
The Ambient Calculus and the Safe Ambient Calculus have been recently successfully proposed as models for the Web. They are based on the notions of ambient movement and ambient opening. Different type disciplines have been devised for them in order to avoid un-wanted behaviours of processes. In the present paper we propose a type discipline for safe mobile ambi-ents which is essentially motivated by ensuring security properties. We associate security levels to ambients and we require that an ambient at security level s can only be traversed or opened by ambients at security level at least s. Since the movement and opening rights can be unrelated, we consider two partial orders between security levels. We also discuss some meaningful examples of use of our type discipline.
منابع مشابه
Secure Safe Ambients and JVM Security
Safe Ambients are a variant of Cardelli and Gordon’s Mobile Ambients [CG98] proposed by Levi and Sangiorgi in [LS00]. The two calculi differ in the underlying notion of interaction: in Mobile Ambients interaction between ambients are “one-sided”, in that one of the two partners in a move or open action simply undergoes the action. In Safe ambients, instead, the reduction relation requires actio...
متن کاملGuardians for Ambient-based Monitoring
In the Mobile Ambients of Cardelli and Gordon an ambient is a unit for mobility, which may contain processes (data) and sub-ambients. Since the seminal work of Cardelli and Gordon, several ambient-based calculi have been proposed (Seal, Boxπ, Safe Ambients, Secure Safe Ambients, Boxed Ambients), mainly for supporting security. At the operational level these (boxand) ambient-based calculi differ...
متن کاملAmbient Calculi with Types: A Tutorial
A tutorial introduction to the key concepts of ambient calculi and their type disciplines, illustrated through a number of systems proposed in the last few years, such as Mobile Ambients, Safe Ambients, Boxed Ambients, and other related calculi with types.
متن کاملBoundary Inference for Enforcing Security Policies in Mobile Ambients
The notion of “boundary ambient” has been recently introduced to model multilevel security policies in the scenario of mobile systems, within pure Mobile Ambients calculus. Information flow is defined in terms of the possibility for a confidential ambient/data to move outside a security boundary, and boundary crossings can be captured through a suitable Control Flow Analysis. We show that this ...
متن کاملMaking Ambients More Robust
Mobile Safe Ambients (SA) was proposed in order to remove the grave interference in the Mobile Ambient calculus. But the coactions introduced in SA also bring some security breaches. In this paper, a similar calculus called Robust Ambients (ROAM) was proposed as a more rational substitute for SA. Through specifying the parameters of the coactions, the ambients in ROAM are more robust against ma...
متن کامل