TWal
commented
1 month ago I think it would be a good idea to make a collection of the types of security properties we want to be able to express, and whether adding versions are a step toward achieving these goals.
For example I think S p si in not really expressive, it allows us to express that some state with state identifier si was compromised, but we have no information on the content of that state: it is a long-term key, an ephemeral key, the state machine of a protocol run? I would like to be able to express such properties, which we currently can't.
A while back I made an experiment toward being able to express such properties, I pushed it in the branch twal/general_labels (I recommend diffing with git diff main...twal/general_labels with the three dots, or using GitHub) if you are interesting in looking at that.
Once we have #9 underway, it seems like it makes sense to also add support for versions to pre-labels and thence also to labels. My sense is that this should work almost identically to how session identifiers do --- that is, just as
P pis corrupt iff there exists somesisuch thatS p siis corrupt,S p sishould be corrupt iff there exists somevisuch thatV p si viis corrupt.Needed components:
pre_label(labelshould be able to stay the same)pre_can_flowandpre_is_corruptaccordingly, probably meaning we add aget_versionfunction for pre-labels.principal_state_version_labelconstructor function, along with its corresponding injectivity property.principal_flow_to_principal_state, showing thatS p siflows toV p si viWe also previously discussed (very briefly) whether it makes sense to have native support for non-binary joins and meets, even potentially covering infinitary ones. In this case, maybe
P pandS p sicould be turned into derived notions. Maybe that's more trouble than it's worth, though.