D31.1 Formal specification of a generic MILS seperation kernel
نویسندگان
چکیده
We introduce a theory of intransitive noninterference for separation kernels with control. We show that it can be instantiated for a simple API consisting of IPC and events.
منابع مشابه
Towards Formal Verification of a Separation Microkernel
The best approach to verifying an IMA separation kernel is to use a (fixed) time-space partitioning kernel with a multiple independent levels of separation (MILS) architecture. We describe an activity that explores the cost and feasibility of doing a formal verification of such a kernel to the Common Criteria (CC) levels mandated by the Separation Kernel Protection Profile (SKPP). We are develo...
متن کاملFormal Specification of a Generic Separation Kernel
We introduce a theory of intransitive noninterference for separation kernels with control. We show that it can be instantiated for a simple API consisting of IPC and events.
متن کاملA Formal Model for MILS Integration
The central artifact in a MILS system is its policy architecture. This identifies the logical components of the system and their channels for communications, and specifies which components are trusted. The components of the policy architecture are logically separate but may share physical resources under the control of trusted resource-sharing components, such as separation kernels or partition...
متن کاملFormal Framework for a Generic Combination of a Process Algebra with an Algebraic Specification Language
In this paper, we suggest a formal framework as a basis for a generic combination of formal languages. It makes it possible the developer to specify the dynamic part of a system with a process algebra, and the static part with an algebraic specification language. The framework is based on a formal kernel composed of an abstract grammar describing the general form of the combination, and a globa...
متن کاملRefinement-based Specification and Security Analysis of Separation Kernels
Assurance of information-flow security by formal methods is mandated in security certification of separation kernels. As an industrial standard for improving safety, ARINC 653 has been complied with by mainstream separation kernels. Due to the new trend of integrating safe and secure functionalities into one separation kernel, security analysis of ARINC 653 as well as a formal specification wit...
متن کامل