A User Model for Information Erasure

Filippo Del Tedesco
(Chalmers University of Technology, Gothenburg, Sweden)
David Sands
(Chalmers University of Technology, Gothenburg, Sweden)

Hunt and Sands (ESOP'08) studied a notion of information erasure for systems which receive secrets intended for limited-time use. Erasure demands that once a secret has fulfilled its purpose the subsequent behaviour of the system should reveal no information about the erased data. In this paper we address a shortcoming in that work: for erasure to be possible the user who provides data must also play his part, but previously that role was only specified informally. Here we provide a formal model of the user and a collection of requirements called erasure friendliness. We prove that an erasure-friendly user can be composed with an erasing system (in the sense of Hunt and Sands) to obtain a combined system which is jointly erasing in an appropriate sense. In doing so we identify stronger requirements on the user than those informally described in the previous work.

In Michele Boreale and Steve Kremer: Proceedings 7th International Workshop on Security Issues in Concurrency (SECCO 2009), Bologna, Italy, 5th September 2009, Electronic Proceedings in Theoretical Computer Science 7, pp. 16–30.
Published: 23rd October 2009.

ArXived at: http://dx.doi.org/10.4204/EPTCS.7.2 bibtex PDF

Comments and questions to: eptcs@eptcs.org
For website issues: webmaster@eptcs.org