Abstract : We present a novel progress-sensitive, flow-sensitive hybrid information-flow control monitor for an imperative interactive language. Progress-sensitive information-flow control is a strong information security guarantee which ensures that a program’s progress (or lack of) does not leak information. Flow-sensitivity means that this strong security guarantee is enforced fairly precisely: we track information flow according to the source of information and not to an a priori given variable security level. We illustrate our approach on an imperative interactive language. Our hybrid monitor is inlined: source programs are translated, by a type-based analysis, into a target language that supports dynamic security levels. A key benefit of this is that the resulting monitored program is amenable to standard optimization techniques such as partial evaluation.
Type de document :
Communication dans un congrès
Jaap-Henk Hoepman; Stefan Katzenbeisser. 31st IFIP International Information Security and Privacy Conference (SEC), May 2016, Ghent, Belgium. IFIP Advances in Information and Communication Technology, AICT-471, pp.352-366, 2016, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-33630-5_24〉
https://hal.inria.fr/hal-01369568
Contributeur : Hal Ifip
<>
Soumis le : mercredi 21 septembre 2016 - 10:58:42
Dernière modification le : mercredi 21 septembre 2016 - 11:14:57
Document(s) archivé(s) le : jeudi 22 décembre 2016 - 12:43:54
Andrew Bedford, Stephen Chong, Josée Desharnais, Nadia Tawbi. A Progress-Sensitive Flow-Sensitive Inlined Information-Flow Control Monitor. Jaap-Henk Hoepman; Stefan Katzenbeisser. 31st IFIP International Information Security and Privacy Conference (SEC), May 2016, Ghent, Belgium. IFIP Advances in Information and Communication Technology, AICT-471, pp.352-366, 2016, ICT Systems Security and Privacy Protection. 〈10.1007/978-3-319-33630-5_24〉. 〈hal-01369568〉
