A Better Facet of Dynamic Information Flow Control

Abstract : Multiple Facets (MF) is a dynamic enforcement mechanism which has proved to be a good fit for implementing information flow security for JavaScript. It relies on multi executing the program, once per each security level or view, to achieve soundness. By looking inside programs, MF encodes the views to reduce the number of needed multi-executions. In this work, we extend Multiple Facets in three directions. First, we propose a new version of MF for arbitrary lattices, called Gener-alised Multiple Facets, or GMF. GMF strictly generalizes MF, which was originally proposed for a specific lattice of principals. Second, we propose a new optimization on top of GMF that further reduces the number of executions. Third, we strengthen the security guarantees provided by Multiple Facets by proposing a termination sensitive version that eliminates covert channels due to termination .
Type de document :
Communication dans un congrès
WWW '18 Companion: The 2018 Web Conference Companion, Apr 2018, Lyon, France. pp.1-9
Liste complète des métadonnées

Littérature citée [38 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01723723
Contributeur : Minh Ngo <>
Soumis le : lundi 5 mars 2018 - 16:56:35
Dernière modification le : mercredi 10 octobre 2018 - 10:09:14
Document(s) archivé(s) le : mercredi 6 juin 2018 - 16:14:10

Fichier

main-hal.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-01723723, version 1

Collections

Citation

Minh Ngo, Nataliia Bielova, Cormac Flanagan, Tamara Rezk, Alejandro Russo, et al.. A Better Facet of Dynamic Information Flow Control. WWW '18 Companion: The 2018 Web Conference Companion, Apr 2018, Lyon, France. pp.1-9. 〈hal-01723723〉

Partager

Métriques

Consultations de la notice

371

Téléchargements de fichiers

79