Automatically calculating quantitative integrity measures for imperative programs

Tom Chothia; Christopher Novakovic; Rajiv Ranjan Singh

doi:10.1007/978-3-319-17016-9_16

Automatically calculating quantitative integrity measures for imperative programs

Tom Chothia^*, Christopher Novakovic, Rajiv Ranjan Singh

^*Corresponding author for this work

Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Chapter

Abstract

This paper presents a framework for calculating measures of data integrity for programs in a small imperative language. We develop a Markov chain semantics for our language which calculates Clarkson and Schneider’s definitions of data contamination and suppression. These definitions are based on conditional mutual information and entropy; we present a result relating them to mutual information, which can be calculated by a number of existing tools. We extend a quantitative information flow tool (CH-IMP) to calculate these measures of integrity and demonstrate this tool with examples based on error correcting codes, the Dining Cryptographers protocol and the attempts by a number of banks to influence the Libor rate.

Original language	English
Title of host publication	Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance
Subtitle of host publication	9th International Workshop, DPM 2014, 7th International Workshop, SETOP 2014, and 3rd International Workshop, QASA 2014, Wroclaw, Poland, September 10-11, 2014. Revised Selected Papers
Editors	Joaquin Garcia-Alfaro, Jordi Herrera-Joancomartí, Emil Lupu
Publisher	Springer
Pages	250-265
Number of pages	16
Volume	8872
ISBN (Electronic)	9783319170169
ISBN (Print)	9783319170152
DOIs	https://doi.org/10.1007/978-3-319-17016-9_16
Publication status	Published - 2015
Event	9th International Workshop on Data Privacy Management, DPM 2014, 7th International Workshop on Autonomous and Spontaneous Security, SETOP 2014 and 3rd International Workshop on Quantitative Aspects in Security Assurance, QASA 2014 held in conjunction with 19th Annual European Research Event in Computer Security Symposium, ESORICS 2014 - Wroclaw, Poland Duration: 10 Sept 2014 → 11 Sept 2014

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	8872
ISSN (Print)	03029743
ISSN (Electronic)	16113349

Conference

Conference	9th International Workshop on Data Privacy Management, DPM 2014, 7th International Workshop on Autonomous and Spontaneous Security, SETOP 2014 and 3rd International Workshop on Quantitative Aspects in Security Assurance, QASA 2014 held in conjunction with 19th Annual European Research Event in Computer Security Symposium, ESORICS 2014
Country/Territory	Poland
City	Wroclaw
Period	10/09/14 → 11/09/14

ASJC Scopus subject areas

Computer Science(all)
Theoretical Computer Science

Access to Document

10.1007/978-3-319-17016-9_16

Cite this

Chothia, T., Novakovic, C., & Singh, R. R. (2015). Automatically calculating quantitative integrity measures for imperative programs. In J. Garcia-Alfaro, J. Herrera-Joancomartí, & E. Lupu (Eds.), Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance : 9th International Workshop, DPM 2014, 7th International Workshop, SETOP 2014, and 3rd International Workshop, QASA 2014, Wroclaw, Poland, September 10-11, 2014. Revised Selected Papers (Vol. 8872, pp. 250-265). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8872). Springer. https://doi.org/10.1007/978-3-319-17016-9_16

Chothia, Tom ; Novakovic, Christopher ; Singh, Rajiv Ranjan. / Automatically calculating quantitative integrity measures for imperative programs. Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance : 9th International Workshop, DPM 2014, 7th International Workshop, SETOP 2014, and 3rd International Workshop, QASA 2014, Wroclaw, Poland, September 10-11, 2014. Revised Selected Papers. editor / Joaquin Garcia-Alfaro ; Jordi Herrera-Joancomartí ; Emil Lupu. Vol. 8872 Springer, 2015. pp. 250-265 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inbook{80fad35604544de9a07b962f74084373,

title = "Automatically calculating quantitative integrity measures for imperative programs",

abstract = "This paper presents a framework for calculating measures of data integrity for programs in a small imperative language. We develop a Markov chain semantics for our language which calculates Clarkson and Schneider{\textquoteright}s definitions of data contamination and suppression. These definitions are based on conditional mutual information and entropy; we present a result relating them to mutual information, which can be calculated by a number of existing tools. We extend a quantitative information flow tool (CH-IMP) to calculate these measures of integrity and demonstrate this tool with examples based on error correcting codes, the Dining Cryptographers protocol and the attempts by a number of banks to influence the Libor rate.",

author = "Tom Chothia and Christopher Novakovic and Singh, {Rajiv Ranjan}",

year = "2015",

doi = "10.1007/978-3-319-17016-9_16",

language = "English",

isbn = "9783319170152",

volume = "8872",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "250--265",

editor = "Garcia-Alfaro, {Joaquin } and Herrera-Joancomart{\'i}, {Jordi } and Emil Lupu",

booktitle = "Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance",

note = "9th International Workshop on Data Privacy Management, DPM 2014, 7th International Workshop on Autonomous and Spontaneous Security, SETOP 2014 and 3rd International Workshop on Quantitative Aspects in Security Assurance, QASA 2014 held in conjunction with 19th Annual European Research Event in Computer Security Symposium, ESORICS 2014 ; Conference date: 10-09-2014 Through 11-09-2014",

}

Chothia, T, Novakovic, C & Singh, RR 2015, Automatically calculating quantitative integrity measures for imperative programs. in J Garcia-Alfaro, J Herrera-Joancomartí & E Lupu (eds), Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance : 9th International Workshop, DPM 2014, 7th International Workshop, SETOP 2014, and 3rd International Workshop, QASA 2014, Wroclaw, Poland, September 10-11, 2014. Revised Selected Papers. vol. 8872, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 8872, Springer, pp. 250-265, 9th International Workshop on Data Privacy Management, DPM 2014, 7th International Workshop on Autonomous and Spontaneous Security, SETOP 2014 and 3rd International Workshop on Quantitative Aspects in Security Assurance, QASA 2014 held in conjunction with 19th Annual European Research Event in Computer Security Symposium, ESORICS 2014, Wroclaw, Poland, 10/09/14. https://doi.org/10.1007/978-3-319-17016-9_16

Automatically calculating quantitative integrity measures for imperative programs. / Chothia, Tom; Novakovic, Christopher; Singh, Rajiv Ranjan.
Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance : 9th International Workshop, DPM 2014, 7th International Workshop, SETOP 2014, and 3rd International Workshop, QASA 2014, Wroclaw, Poland, September 10-11, 2014. Revised Selected Papers. ed. / Joaquin Garcia-Alfaro; Jordi Herrera-Joancomartí; Emil Lupu. Vol. 8872 Springer, 2015. p. 250-265 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8872).

Research output: Chapter in Book/Report/Conference proceeding › Chapter

TY - CHAP

T1 - Automatically calculating quantitative integrity measures for imperative programs

AU - Chothia, Tom

AU - Novakovic, Christopher

AU - Singh, Rajiv Ranjan

PY - 2015

Y1 - 2015

N2 - This paper presents a framework for calculating measures of data integrity for programs in a small imperative language. We develop a Markov chain semantics for our language which calculates Clarkson and Schneider’s definitions of data contamination and suppression. These definitions are based on conditional mutual information and entropy; we present a result relating them to mutual information, which can be calculated by a number of existing tools. We extend a quantitative information flow tool (CH-IMP) to calculate these measures of integrity and demonstrate this tool with examples based on error correcting codes, the Dining Cryptographers protocol and the attempts by a number of banks to influence the Libor rate.

AB - This paper presents a framework for calculating measures of data integrity for programs in a small imperative language. We develop a Markov chain semantics for our language which calculates Clarkson and Schneider’s definitions of data contamination and suppression. These definitions are based on conditional mutual information and entropy; we present a result relating them to mutual information, which can be calculated by a number of existing tools. We extend a quantitative information flow tool (CH-IMP) to calculate these measures of integrity and demonstrate this tool with examples based on error correcting codes, the Dining Cryptographers protocol and the attempts by a number of banks to influence the Libor rate.

UR - http://www.scopus.com/inward/record.url?scp=84926669767&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-17016-9_16

DO - 10.1007/978-3-319-17016-9_16

M3 - Chapter

AN - SCOPUS:84926669767

SN - 9783319170152

VL - 8872

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 250

EP - 265

BT - Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance

A2 - Garcia-Alfaro, Joaquin

A2 - Herrera-Joancomartí, Jordi

A2 - Lupu, Emil

PB - Springer

T2 - 9th International Workshop on Data Privacy Management, DPM 2014, 7th International Workshop on Autonomous and Spontaneous Security, SETOP 2014 and 3rd International Workshop on Quantitative Aspects in Security Assurance, QASA 2014 held in conjunction with 19th Annual European Research Event in Computer Security Symposium, ESORICS 2014

Y2 - 10 September 2014 through 11 September 2014

ER -

Chothia T, Novakovic C, Singh RR. Automatically calculating quantitative integrity measures for imperative programs. In Garcia-Alfaro J, Herrera-Joancomartí J, Lupu E, editors, Data Privacy Management, Autonomous Spontaneous Security, and Security Assurance : 9th International Workshop, DPM 2014, 7th International Workshop, SETOP 2014, and 3rd International Workshop, QASA 2014, Wroclaw, Poland, September 10-11, 2014. Revised Selected Papers. Vol. 8872. Springer. 2015. p. 250-265. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-319-17016-9_16

Automatically calculating quantitative integrity measures for imperative programs

Abstract

Publication series

Conference

ASJC Scopus subject areas

Access to Document

Fingerprint

Cite this