Refactoring preserves security

Kammueller, Florian (2016) Refactoring preserves security. In: 11th DPM International Workshop on Data Privacy Management (DPM 2016) co-located with ESORICS 2016, 26-27 Sept 2016, Heraklion, Crete, Greece.

PDF - Final accepted version (with author's formatting)
Download (368kB) | Preview


Refactoring allows changing a program without changing its behaviour from an observer’s point of view. To what extent does this invariant of behaviour also preserve security? We show that a program remains secure under refactoring. As a foundation, we use the Decentralized Label Model (DLM) for specifying secure information flows of programs and transition system models for their observable behaviour. On this basis, we provide a bisimulation based formal definition of refactoring and show its correspondence to the formal notion of information flow security (noninterference). This permits us to show security of refactoring patterns that have already been practically explored.

Item Type: Conference or Workshop Item (Paper)
Additional Information: Paper published as chapter in: Data Privacy Management and Security Assurance, 2016, Volume 9963 of the series Lecture Notes in Computer Science pp 238-245
Research Areas: A. > School of Science and Technology > Computer Science > Foundations of Computing group
Item ID: 20406
Notes on copyright: Attached is an author accepted manuscript version of a paper published in Lecture Notes in Computer Science; made available in this repository in accordance with the publisher's self-archiving policy. The final publication is available at Springer via
Useful Links:
Depositing User: Florian Kammueller
Date Deposited: 02 Sep 2016 11:55
Last Modified: 06 Sep 2018 22:16

Actions (login required)

Edit Item Edit Item

Full text downloads (NB count will be zero if no full text documents are attached to the record)

Downloads per month over the past year