transparent gif

 

Ej inloggad.

Göteborgs universitets publikationer

Flow-Sensitive Semantics for Dynamic Information Flow Policies

Författare och institution:
Niklas Broberg (Institutionen för data- och informationsteknik (GU)); David Sands (Institutionen för data- och informationsteknik, Datavetenskap (Chalmers), Chalmers)
Publicerad i:
ACM SIGPLAN Fourth Workshop on Programming Languages and Analysis for Security (PLAS 2009), s. 101-112
ISBN:
9781605586458
Publikationstyp:
Konferensbidrag, refereegranskat
Publiceringsår:
2009
Språk:
engelska
Fulltextlänk:
Sammanfattning (abstract):
Dynamic information flow policies, such as declassification, are essential for practically useful information flow control systems. However, most systems proposed to date that handle dynamic information flow policies suffer from a common drawback. They build on semantic models of security which are inherently flow insensitive, which means that many simple intuitively secure programs will be considered insecure. In this paper we address this problem in the context of a particular system, flow locks. We provide a new flow sensitive semantics for flow locks based on a knowledge-style definition (following Askarov and Sabelfeld), in which the knowledge gained by an actor observing a program run is constrained according to the flow locks which are open at the time each observation is made. We demonstrate the applicability of the definition in a soundness proof for a simple flow lock type system. We also show how other systems can be encoded using flow locks, as an easy means to provide these systems with flow sensitive semantics.
Ämne (baseras på Högskoleverkets indelning av forskningsämnen):
NATURVETENSKAP ->
Data- och informationsvetenskap ->
Datavetenskap (datalogi) ->
Datalogi
NATURVETENSKAP ->
Data- och informationsvetenskap ->
Programvaruteknik
Nyckelord:
Declassification; Information flow control; Security type system
Postens nummer:
103719
Posten skapad:
2009-12-15 14:06
Posten ändrad:
2016-07-22 12:39

Visa i Endnote-format

Göteborgs universitet • Tel. 031-786 0000
© Göteborgs universitet 2007