Quantitative Analysis of Information Flow Using Theorem Proving
Quantitative analysis of information flow is widely used to measure how much information was leaked from the secret inputs to the outputs or public inputs of a program. We propose to conduct the quantitative analysis of information flow within the trusted kernel of a higher-order-logic theorem prover in order to overcome the inaccuracy limitations of traditional analysis techniques used in this domain. For this purpose, we present the formalization of the Kullback-Leibler divergence that can be used as a unified measure of information leakage. Furthermore, we propose two new measures of information leakage, namely the information leakage degree and the conditional information leakage degree. We also formalize the notion of anonymity-based single MIX and use the channel capacity as a measure of information leakage in the MIX. Finally, for illustration purposes, we show how our framework allowed us to find a counter-example for a theorem that was reported in the literature to describe the leakage properties of the anonymity-based single MIX.
Unable to display preview. Download preview PDF.
- 4.Cover, T.M., Thomas, J.A.: Elements of Information Theory. Wiley-Interscience (1991)Google Scholar
- 7.Gallager, R.G.: Information Theory and Reliable Communication. John Wiley & Sons, Inc. (1968)Google Scholar
- 8.Goldberg, R.R.: Methods of Real Analysis. Wiley (1976)Google Scholar
- 9.Gordon, M.J.C.: Mechanizing Programming Logics in Higher-Order Logic. In: Current Trends in Hardware Verification and Automated Theorem Proving, pp. 387–439. Springer (1989)Google Scholar
- 10.Gordon, M.J.C., Melham, T.F.: Introduction to HOL: A Theorem Proving Environment for Higher-Order Logic. Cambridge University Press (1993)Google Scholar
- 15.Mhamdi, T., Hasan, O., Tahar, S.: Quantitative Information Flow Analysis in HOL (2012), http://hvg.ece.concordia.ca/code/hol/information-flow/