Sciweavers

ESOP
2007
Springer

Controlling the What and Where of Declassification in Language-Based Security

14 years 3 months ago
Controlling the What and Where of Declassification in Language-Based Security
Abstract. While a rigorous information flow analysis is a key step in obtaining meaningful end-to-end confidentiality guarantees, one must also permit possibilities for declassification. Sabelfeld and Sands categorized the existing approaches to controlling declassification in their overview along four dimensions and according to four prudent principles [16]. In this article, we propose three novel security conditions for controlling the dimensions where and what, and we explain why these conditions constitute improvements over prior approaches. Moreover, we present a type-based security analysis and, as another novelty, prove a soundness result that considers more than one dimension of declassification.
Heiko Mantel, Alexander Reinhard
Added 16 Aug 2010
Updated 16 Aug 2010
Type Conference
Year 2007
Where ESOP
Authors Heiko Mantel, Alexander Reinhard
Comments (0)