A Better Facet of Dynamic Information Flow Control - Inria - Institut national de recherche en sciences et technologies du numérique Accéder directement au contenu
Communication Dans Un Congrès Année : 2018

A Better Facet of Dynamic Information Flow Control

Minh Ngo
  • Fonction : Auteur
  • PersonId : 1029079
Nataliia Bielova
Cormac Flanagan
  • Fonction : Auteur
  • PersonId : 1029080
Tamara Rezk
  • Fonction : Auteur
  • PersonId : 949476

Résumé

Multiple Facets (MF) is a dynamic enforcement mechanism which has proved to be a good fit for implementing information flow security for JavaScript. It relies on multi executing the program, once per each security level or view, to achieve soundness. By looking inside programs, MF encodes the views to reduce the number of needed multi-executions. In this work, we extend Multiple Facets in three directions. First, we propose a new version of MF for arbitrary lattices, called Gener-alised Multiple Facets, or GMF. GMF strictly generalizes MF, which was originally proposed for a specific lattice of principals. Second, we propose a new optimization on top of GMF that further reduces the number of executions. Third, we strengthen the security guarantees provided by Multiple Facets by proposing a termination sensitive version that eliminates covert channels due to termination .
Fichier principal
Vignette du fichier
main-hal.pdf (1012.39 Ko) Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)
Loading...

Dates et versions

hal-01723723 , version 1 (05-03-2018)

Identifiants

  • HAL Id : hal-01723723 , version 1

Citer

Minh Ngo, Nataliia Bielova, Cormac Flanagan, Tamara Rezk, Alejandro Russo, et al.. A Better Facet of Dynamic Information Flow Control. WWW '18 Companion: The 2018 Web Conference Companion, Apr 2018, Lyon, France. pp.1-9. ⟨hal-01723723⟩
438 Consultations
154 Téléchargements

Partager

Gmail Facebook X LinkedIn More