CoSMeDis: a distributed social media platform with formally verified confidentiality guarantees
Conference paper
Bauereiß, T., Pesenti Gritti, A., Popescu, A. and Raimondi, F. 2017. CoSMeDis: a distributed social media platform with formally verified confidentiality guarantees. 38th IEEE Symposium on Security and Privacy. San Jose, CA, USA 22 - 26 May 2017 Institute of Electrical and Electronics Engineers (IEEE). pp. 729-748 https://doi.org/10.1109/SP.2017.24
Type | Conference paper |
---|---|
Title | CoSMeDis: a distributed social media platform with formally verified confidentiality guarantees |
Authors | Bauereiß, T., Pesenti Gritti, A., Popescu, A. and Raimondi, F. |
Abstract | We present the design, implementation and information flow verification of CoSMeDis, a distributed social media platform. The system consists of an arbitrary number of communicating nodes, deployable at different locations over the Internet. Its registered users can post content and establish intra-node and inter-node friendships, used to regulate access control over the posts. The system’s kernel has been verified in the proof assistant Isabelle/HOL and automatically extracted as Scala code. We formalized a framework for composing a class of information flow security guarantees in a distributed system, applicable to input/output automata. We instantiated this framework to confidentiality properties for CoSMeDis’s sources of information: posts, friendship requests, and friendship status. |
Research Group | Foundations of Computing group |
Conference | 38th IEEE Symposium on Security and Privacy |
Page range | 729-748 |
ISSN | 2375-1207 |
Electronic | 2375-1207 |
ISBN | |
Hardcover | 9781509055326 |
Electronic | 9781509055333 |
Paperback | 9781509055340 |
Publisher | Institute of Electrical and Electronics Engineers (IEEE) |
Publication dates | |
31 May 2017 | |
Online | 26 Jun 2017 |
Publication process dates | |
Deposited | 19 Jun 2017 |
Accepted | 09 Feb 2017 |
Output status | Published |
Accepted author manuscript | File Access Level Open |
Copyright Statement | © 2017 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works. |
Digital Object Identifier (DOI) | https://doi.org/10.1109/SP.2017.24 |
Language | English |
Book title | 2017 IEEE Symposium on Security and Privacy (SP) |
https://repository.mdx.ac.uk/item/870w5
Download files
53
total views10
total downloads2
views this month1
downloads this month