NonInterf

NonInterf - Noninterference Model Definition Goguen and...

Info iconThis preview shows pages 1–2. Sign up to view the full content.

View Full Document Right Arrow Icon
1 1 Noninterference Model CS177 2011 Noninterference Model Goguen and Meseguer 2 Noninterference Model CS177 2011 Definition One group of users using a certain set of commands is noninterfering with another group of users if what the first group does with those commands has no effect on what the second group of users can see 3 Noninterference Model CS177 2011 State Machine State machine M – a set U of users – a set S of states – a set SC of state commands – a set out of outputs Function out: S x U out Function do: S x U x SC S Constant S0, initial state 4 Noninterference Model CS177 2011 Capability System – a set U of users – a set S of states – a set SC of state commands – a set out of outputs – a set CAPT of capability table values – a set CC of capability commands – Function out: S x CAPT x U out – Function do: S x CAPT x U x SC S – Function cdo: CAPT x U x CC CAPT – Constant S0, initial machine state – Constant T0, initial capability table
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Image of page 2
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 3

NonInterf - Noninterference Model Definition Goguen and...

This preview shows document pages 1 - 2. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online