Automata-based Confidentiality Monitoring

Gurvan Le Guernic 1, 2 Anindya Banerjee 1 Thomas Jensen 2 David Schmidt 1
2 Lande - Logiciel : ANalyse et DEveloppement
IRISA - Institut de Recherche en Informatique et Systèmes Aléatoires, Inria Rennes – Bretagne Atlantique
Abstract : Non-interference is typically used as a baseline security policy to formalize confidentiality of secret information manipulated by a program. In contrast to static checking of non-interference, this paper considers dynamic, automaton-based, monitoring of information flow for a single execution of a sequential program. The monitoring mechanism is based on a combination of dynamic and static analyses. During program execution, abstractions of program events are sent to the automaton, which uses the abstractions to track information flows and to control the execution by forbidding or editing dangerous actions. The mechanism proposed is proved to be sound, to preserve executions of well-typed programs (in the security type system of Volpano, Smith and Irvine), and to preserve some safe executions of ill-typed programs.
Type de document :
Communication dans un congrès
ASIAN'06: 11th Annual Asian Computing Science Conference, Dec 2006, Tokyo/Japan, 2006
Liste complète des métadonnées

https://hal.inria.fr/inria-00130210
Contributeur : Gurvan Le Guernic <>
Soumis le : vendredi 9 février 2007 - 18:09:24
Dernière modification le : mercredi 16 mai 2018 - 11:23:03
Document(s) archivé(s) le : vendredi 21 septembre 2012 - 11:15:09

Fichier

automatonBasedNiMonitoring.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00130210, version 1

Collections

Citation

Gurvan Le Guernic, Anindya Banerjee, Thomas Jensen, David Schmidt. Automata-based Confidentiality Monitoring. ASIAN'06: 11th Annual Asian Computing Science Conference, Dec 2006, Tokyo/Japan, 2006. 〈inria-00130210〉

Partager

Métriques

Consultations de la notice

402

Téléchargements de fichiers

469