Quantification of Integrity
MetadataShow full item record
Clarkson, Michael R.; Schneider, Fred B.
Three integrity measures are introduced: contamination, channel suppression, and program suppression. Contamination is a measure of how much untrusted information reaches trusted outputs; it is the dual of leakage, which is a measure of information-flow confidentiality. Channel suppression is a measure of how much information about inputs to a noisy channel is missing from channel outputs. And program suppression is a measure of how much information about the correct output of a program is lost because of attacker influence and implementation errors. Program and channel suppression do not have confidentiality duals. As a case study, the relationship between quantitative integrity, confidentiality, and database privacy is examined.
Supported in part by ONR grant N00014-09-1-0652, AFOSR grant F9550-06-0019, NSF grants 0430161, 0964409, and CCF-0424422 (TRUST), and a gift from Microsoft Corporation.
integrity; quantitative information flow; information theory; database privacy
Revises and expands an earlier tech report: http://ecommons.library.cornell.edu/handle/1813/14470