Special Issue Paper
Information flow control of component-based distributed systems
Article first published online: 12 JAN 2012
Copyright © 2012 John Wiley & Sons, Ltd.
Concurrency and Computation: Practice and Experience
Special Issue: New Technologies of Distributed Systems
Volume 25, Issue 2, pages 161–179, February 2013
How to Cite
Sfaxi, L., Abdellatif, T., Robbana, R. and Lakhnech, Y. (2013), Information flow control of component-based distributed systems. Concurrency Computat.: Pract. Exper., 25: 161–179. doi: 10.1002/cpe.2807
- Issue published online: 27 JAN 2013
- Article first published online: 12 JAN 2012
- Manuscript Accepted: 23 NOV 2011
- Manuscript Received: 23 JUN 2011
- component-based systems;
Noninterference is a strong security policy that enforces confidentiality and integrity. Many solutions are proposed in the state of the art for verifying this policy in programs, but few tools are proposed to implement it. In this paper, we define a high-level model called Component Information Flow, and we develop the tools that simplify distributed secure system development and deployment.
The developer focuses on developing the functional part of his or her system and defines his or her system security properties by using a high-level configuration. When this configuration is validated, that is, no security leak is detected, the system security code is generated. To validate and demonstrate the effectiveness of our approach, we apply the Component Information Flow tools to a classical Web service use case. Copyright © 2012 John Wiley & Sons, Ltd.