Abstract
We present an Isabelle/HOL formalization of such a security property for controlled declassification, namely WHAT&WHERE-security from "Scheduler-Independent Declassification" by Lux, Mantel, and Perner. The formalization includes compositionality proofs for and a soundness proof for a security type system that checks for programs in a simple while language with dynamic thread creation.
Our formalization of the security type system is abstract in the language for expressions and in the semantic side conditions for expressions. It can easily be instantiated with different syntactic approximations for these side conditions. The soundness proof of such an instantiation boils down to showing that these syntactic approximations imply the semantic side conditions.
This Isabelle/HOL formalization uses theories from the entry Strong Security.
License
Topics
Session WHATandWHERE_Security
- WHATWHERE_Security
- Up_To_Technique
- MWLs
- Parallel_Composition
- WHATWHERE_Secure_Skip_Assign
- Language_Composition
- Type_System
- Type_System_example