Automatic Covert Channel Analysis of a Multilevel Secure Component
Lanotte
Ruggero
author
Maggiolo-Schettini
Andrea
author
Tini
Simone
author
Troina
Angelo
author
Tronci
Enrico
author
2004
Springer
The NRL Pump protocol defines a multilevel secure component whose goal is to minimize leaks of information from high level systems to lower level systems, without degrading average time performances. We define a probabilistic model for the NRL Pump and show how a probabilistic model checker (FHP-mur$\varphi$) can be used to estimate the capacity of a probabilistic covert channel in the NRL Pump. We are able to compute the probability of a security violation as a function of time for various configurations of the system parameters (e.g. buffer sizes, moving average size, etc). Because of the model complexity, our results cannot be obtained using an analytical approach and, because of the low probabilities involved, it can be hard to obtain them using a simulator.
exported from refbase (http://mclab.di.uniroma1.it/publications/show.php?record=34), last updated on Thu, 22 Nov 2012 14:59:18 +0100
text
http://mclab.di.uniroma1.it/publications/papers/papers/Lanotte2004a.pdf
10.1007/b101042
Lanotte_etal2004
Sapienza @ mari @ icics04
Information and Communications Security, 6th International Conference, ICICS 2004, Malaga, Spain, October 27-29, 2004, Proceedings
Lopez
J.
editor
Qing
S.
editor
Okamoto
E.
editor
2004
Springer
conference publication
249
261
Lecture Notes in Computer Science
3269