Bauereiß, T., Gritti, A.P., Popescu, A. orcid.org/0000-0001-8747-0619 et al. (1 more author) (2017) CoSMeDis : a distributed social media platform with formally verified confidentiality guarantees. In: 2017 IEEE Symposium on Security and Privacy (SP). 38th IEEE Symposium on Security and Privacy (SP), 22-26 May 2017, San Jose, CA, USA. IEEE , pp. 729-748. ISBN 9781509055340
Abstract
We present the design, implementation and information flow verification of CoSMeDis, a distributed social media platform. The system consists of an arbitrary number of communicating nodes, deployable at different locations over the Internet. Its registered users can post content and establish intra-node and inter-node friendships, used to regulate access control over the posts. The system's kernel has been verified in the proof assistant Isabelle/HOL and automatically extracted as Scala code. We formalized a framework for composing a class of information flow security guarantees in a distributed system, applicable to input/output automata. We instantiated this framework to confidentiality properties for CoSMeDis's sources of information: posts, friendship requests, and friendship status.
Metadata
Item Type: | Proceedings Paper |
---|---|
Authors/Creators: |
|
Copyright, Publisher and Additional Information: | © 2017 The Author(s). Personal use of this material is permitted. Permission from IEEE must be obtained for all other users, including reprinting/ republishing this material for advertising or promotional purposes, creating new collective works for resale or redistribution to servers or lists, or reuse of any copyrighted components of this work in other works. Reproduced in accordance with the publisher's self-archiving policy. |
Dates: |
|
Institution: | The University of Sheffield |
Academic Units: | The University of Sheffield > Faculty of Engineering (Sheffield) > Department of Computer Science (Sheffield) |
Depositing User: | Symplectic Sheffield |
Date Deposited: | 27 May 2020 11:56 |
Last Modified: | 28 May 2020 16:42 |
Status: | Published |
Publisher: | IEEE |
Refereed: | Yes |
Identification Number: | 10.1109/sp.2017.24 |
Open Archives Initiative ID (OAI ID): | oai:eprints.whiterose.ac.uk:161213 |