transparent gif

 

Ej inloggad.

Göteborgs universitets publikationer

Paralocks: Role-based information flow control and beyond

Författare och institution:
Niklas Broberg (Institutionen för data- och informationsteknik (GU)); David Sands (Institutionen för data- och informationsteknik, Datavetenskap (Chalmers), Chalmers)
Publicerad i:
37th Annual ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages, POPL'10, Madrid, Spain, 17-23 January 2010, s. 431-444
ISBN:
978-160558479-9
ISSN:
0730-8566
Publikationstyp:
Konferensbidrag, refereegranskat
Publiceringsår:
2010
Språk:
engelska
Fulltextlänk:
Sammanfattning (abstract):
This paper presents Paralocks, a language for building expressive but statically verifiable fine-grained information flow policies. Paralocks combine the expressive power of Flow Locks (Broberg & Sands, ESOP'06) with the ability to express policies involving run-time principles, roles (in the style of role-based access control), and relations (such as "acts-for" in discretionary access control). We illustrate the Paralocks policy language by giving a simple encoding of Myers and Liskov's Decentralized Label Model (DLM). Furthermore - and unlike the DLM - we provide an information flow semantics for full Paralock policies. Lastly we illustrate how Paralocks can be statically verified by providing a simple programming language incorporating Paralock policy specifications, and a static type system which soundly enforces information flow security according to the Paralock semantics.
Ämne (baseras på Högskoleverkets indelning av forskningsämnen):
NATURVETENSKAP ->
Data- och informationsvetenskap ->
Datavetenskap (datalogi)
Nyckelord:
Information flow, Language based security, Security policies
Postens nummer:
216274
Posten skapad:
2015-05-04 11:40
Posten ändrad:
2016-07-22 12:53

Visa i Endnote-format

Göteborgs universitet • Tel. 031-786 0000
© Göteborgs universitet 2007