Classification of Security Properties (Part I: Information Flow)