TY - GEN
T1 - Composable security analysis of OS services
AU - Canetti, Ran
AU - Chari, Suresh
AU - Halevi, Shai
AU - Pfitzmann, Birgit
AU - Roy, Arnab
AU - Steiner, Michael
AU - Venema, Wietse
N1 - Funding Information:
This work is supported in part by the Department of Homeland Security under the grant FA8750-08-2-0091.
PY - 2011
Y1 - 2011
N2 - We provide an analytical framework for basic integrity properties of file systems, namely the binding of files to filenames and writing capabilities. A salient feature of our modeling and analysis is that it is composable: In spite of the fact that we analyze the filesystem in isolation, security is guaranteed even when the file system operates as a component within an arbitrary, and potentially adversarial system. Our results are obtained by adapting the Universally Composable (UC) security framework to the analysis of software systems. Originally developed for cryptographic protocols, the UC framework allows the analysis of simple components in isolation, and provides assurance that these components maintain their behavior when combined in a large system, potentially under adversarial conditions.
AB - We provide an analytical framework for basic integrity properties of file systems, namely the binding of files to filenames and writing capabilities. A salient feature of our modeling and analysis is that it is composable: In spite of the fact that we analyze the filesystem in isolation, security is guaranteed even when the file system operates as a component within an arbitrary, and potentially adversarial system. Our results are obtained by adapting the Universally Composable (UC) security framework to the analysis of software systems. Originally developed for cryptographic protocols, the UC framework allows the analysis of simple components in isolation, and provides assurance that these components maintain their behavior when combined in a large system, potentially under adversarial conditions.
UR - http://www.scopus.com/inward/record.url?scp=79959319817&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-21554-4_25
DO - 10.1007/978-3-642-21554-4_25
M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???
AN - SCOPUS:79959319817
SN - 9783642215537
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 431
EP - 448
BT - Applied Cryptography and Network Security - 9th International Conference, ACNS 2011, Proceedings
T2 - 9th International Conference on Applied Cryptography and Network Security, ACNS 2011
Y2 - 7 June 2011 through 10 June 2011
ER -