%0 Conference Proceedings
%T Reasoning About Distributed Secrets
%+ Macquarie University
%+ Data61 [Canberra] (CSIRO)
%+ University of New South Wales [Sydney] (UNSW)
%A Bordenabe, Nicolás
%A Mciver, Annabelle
%A Morgan, Carroll
%A Rabehaja, Tahiry
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 37th International Conference on Formal Techniques for Distributed Objects, Components, and Systems (FORTE)
%C Neuchâtel, Switzerland
%Y Ahmed Bouajjani
%Y Alexandra Silva
%I Springer International Publishing
%3 Formal Techniques for Distributed Objects, Components, and Systems
%V LNCS-10321
%P 156-170
%8 2017-06-19
%D 2017
%R 10.1007/978-3-319-60225-7_11
%K Quantitative information flow
%K Foundations of security
%K Program semantics
%K Secure refinement
%Z Computer Science [cs]
%Z Computer Science [cs]/Networking and Internet Architecture [cs.NI]Conference papers
%X In 1977 Tore Dalenius described how partial disclosure about one secret can impact the confidentiality of other correlated secrets, and indeed this phenomenon is well-known in privacy of databases. The aim here is to study this issue in a context of programs with distributed secrets. Moreover, we do not assume that secrets never change, in fact we investigate what happens when they do: we explore how updates to some (but not all) secrets can affect confidentiality elsewhere in the system.We provide methods to compute robust upper bounds on the impact of such information leakages with respect to all distributed secrets. Finally we illustrate our results on a defence against side channels.
%G English
%Z TC 6
%Z WG 6.1
%2 https://inria.hal.science/hal-01658413/document
%2 https://inria.hal.science/hal-01658413/file/446833_1_En_11_Chapter.pdf
%L hal-01658413
%U https://inria.hal.science/hal-01658413
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-WG
%~ IFIP-TC6
%~ IFIP-WG6-1
%~ IFIP-FORTE
%~ IFIP-LNCS-10321