Refactoring preserves security
Conference paper
Kammueller, F. 2016. Refactoring preserves security. 11th DPM International Workshop on Data Privacy Management (DPM 2016) co-located with ESORICS 2016. Heraklion, Crete, Greece 26 - 27 Sep 2016 Springer. pp. 238-245 https://doi.org/10.1007/978-3-319-47072-6_17
Type | Conference paper |
---|---|
Title | Refactoring preserves security |
Authors | Kammueller, F. |
Abstract | Refactoring allows changing a program without changing its behaviour from an observer’s point of view. To what extent does this invariant of behaviour also preserve security? We show that a program remains secure under refactoring. As a foundation, we use the Decentralized Label Model (DLM) for specifying secure information flows of programs and transition system models for their observable behaviour. On this basis, we provide a bisimulation based formal definition of refactoring and show its correspondence to the formal notion of information flow security (noninterference). This permits us to show security of refactoring patterns that have already been practically explored. |
Research Group | Foundations of Computing group |
Conference | 11th DPM International Workshop on Data Privacy Management (DPM 2016) co-located with ESORICS 2016 |
Page range | 238-245 |
ISSN | 0302-9743 |
ISBN | |
Hardcover | 9783319470719 |
Publisher | Springer |
Publication dates | |
22 Sep 2016 | |
Publication process dates | |
Deposited | 02 Sep 2016 |
Accepted | 11 Aug 2016 |
Output status | Published |
Accepted author manuscript | |
Copyright Statement | Attached is an author accepted manuscript version of a paper published in Lecture Notes in Computer Science; made available in this repository in accordance with the publisher's self-archiving policy. The final publication is available at Springer via http://dx.doi.org/10.1007/978-3-319-47072-6_17 |
Additional information | Paper published as chapter in: Data Privacy Management and Security Assurance, 2016, Volume 9963 of the series Lecture Notes in Computer Science pp 238-245 |
Digital Object Identifier (DOI) | https://doi.org/10.1007/978-3-319-47072-6_17 |
Language | English |
Book title | Data Privacy Management and Security Assurance: 11th International Workshop, DPM 2016 and 5th International Workshop, QASA 2016, Heraklion, Crete, Greece, September 26-27, 2016, Proceedings |
https://repository.mdx.ac.uk/item/86910
Download files
42
total views14
total downloads1
views this month3
downloads this month