JavaScript is disabled for your browser. Some features of this site may not work without it.
Belief in Information Flow

Author
Clarkson, Michael R.; Myers, Andrew C.; Schneider, Fred B.
Abstract
Measurement of information flow requires a definition of leakage,
which traditionally has been defined to occur when an attacker's uncertainty about secret data is reduced. We show that this uncertainty-based approach is inadequate for measuring information flow when an attacker is making assumptions about secret inputs and these assumptions might be incorrect. Moreover, we show that such attacker beliefs are an unavoidable aspect of any satisfactory definition of leakage. To reason about information flow based on beliefs, we develop a model that describes how an attacker's belief changes due to the attacker's observation of the execution of a probabilistic (or deterministic) program. The model leads to a new metric for quantitative information flow that measures accuracy rather than uncertainty of beliefs.
Date Issued
2005-02-10Publisher
Cornell University
Subject
computer science; technical report
Previously Published As
http://techreports.library.cornell.edu:8081/Dienst/UI/1.0/Display/cul.cis/TR2005-1976
Type
technical report