A Cryptographic Decentralized Label Model

14 years 5 months ago

Download www.cis.upenn.edu

Information-ﬂow security policies are an appealing way of specifying conﬁdentiality and integrity policies in information systems. Most previous work on language-based security has assumed that programs run in a closed, managed environment and that they use potentially unsafe constructs, such as declassiﬁcation, to interface to external communication channels, perhaps after encrypting data to preserve its conﬁdentiality. This situation is unsatisfactory for systems that need to communicate over untrusted channels or use untrusted persistent storage, since the connection between the cryptographic mechanisms used in the untrusted ent and the abstract security labels used in the trusted language environment is ad hoc and unclear. This paper addresses this problem in three ways: First, it presents a simple, security-typed language with a novel m called packages that provides an abstract means for creating opaque objects and associating them with security labels; well-typed program...

Jeffrey A. Vaughan, Steve Zdancewic

Real-time Traffic

Abstract Security Labels | Information-ﬂow Security Policies | Security Label | Security Privacy | SP 2007 |

claim paper

Post Info
More Details (n/a)

Added	04 Jun 2010
Updated	04 Jun 2010
Type	Conference
Year	2007
Where	SP
Authors	Jeffrey A. Vaughan, Steve Zdancewic

Comments (0)

Sciweavers

A Cryptographic Decentralized Label Model

Abstract Security Labels | Information-ﬂow Security Policies | Security Label | Security Privacy | SP 2007 |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers