Sciweavers

IJISEC
2007

Dynamic security labels and static information flow control

13 years 11 months ago
Dynamic security labels and static information flow control
This paper presents a language in which information flow is securely controlled by a type system, yet the security class of data can vary dynamically. Information flow policies provide the means to express strong security requirements for data confidentiality and integrity. Recent work on security-typed programming languages has shown that information flow can be analyzed statically, ensuring that programs will respect the restrictions placed on data. However, real computing systems have security policies that cannot be determined at the time of program analysis. For example, a file has associated access permissions that cannot be known with certainty until it is opened. Although one security-typed programming language has included support for dynamic security labels, there has been no demonstration that a general mechanism for dynamic labels can securely control information flow. In this paper, we present an expressive language-based mechanism for reasoning about dynamic securi...
Lantian Zheng, Andrew C. Myers
Added 15 Dec 2010
Updated 15 Dec 2010
Type Journal
Year 2007
Where IJISEC
Authors Lantian Zheng, Andrew C. Myers
Comments (0)