Secure Information Flow as a Safety Property

被引:0
|
作者
Boudol, Gerard [1 ]
机构
[1] INRIA, F-06902 Sophia Antipolis, France
来源
FORMAL ASPECTS IN SECURITY AND TRUST | 2009年 / 5491卷
关键词
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
In this paper we argue that, in the perspective of developing "security-minded" programming languages, the secure information flow property should be defined (as well as disciplined access) as a standard safety property, based on a notion of a security error, namely that one should not put in a public location a value elaborated using confidential information. We show that this is the property guaranteed by a standard security type system, and that, for a simple language, it is strictly stronger than non-interference. Moreover, we show that this notion of secure information flow allows us to give natural semantics to various security-minded programming constructs, including declassification.
引用
收藏
页码:20 / 34
页数:15
相关论文
共 50 条
  • [11] Mediating secure information flow policies
    Zhang, Guo-Qiang
    [J]. INFORMATION AND COMPUTATION, 2007, 205 (09) : 1413 - 1425
  • [12] Secure Information Flow for Distributed Systems
    Alpizar, Rafael
    Smith, Geoffrey
    [J]. FORMAL ASPECTS IN SECURITY AND TRUST, 2010, 5983 : 126 - 140
  • [13] Secure information flow and program logics
    Beringer, Lennart
    Hofmann, Martin
    [J]. 20TH IEEE COMPUTER SECURITY FOUNDATIONS SYMPOSIUM (CSFS20), PROCEEDINGS, 2007, : 233 - +
  • [14] Verifying a secure information flow analyzer
    Naumann, DA
    [J]. THEOREM PROVING IN HIGHER ORDER LOGICS, PROCEEDINGS, 2005, 3603 : 211 - 226
  • [15] A Policy Model for Secure Information Flow
    Adetoye, Adedayo O.
    Badii, Atta
    [J]. FOUNDATIONS AND APPLICATIONS OF SECURITY ANALYSIS, 2009, 5511 : 1 - 17
  • [16] A semantic approach to secure information flow
    Joshi, R
    Leino, KRM
    [J]. SCIENCE OF COMPUTER PROGRAMMING, 2000, 37 (1-3) : 113 - 138
  • [17] A new type system for secure information flow
    Smith, G
    [J]. 14TH IEEE COMPUTER SECURITY FOUNDATIONS WORKSHOP, PROCEEDINGS, 2001, : 115 - 125
  • [18] Secure information flow for a concurrent language with scheduling
    Barthe, Gilles
    Nieto, Leonor
    [J]. JOURNAL OF COMPUTER SECURITY, 2007, 15 (06) : 647 - 689
  • [19] Non-termination and secure information flow
    Smith, Geoffrey
    Alpizar, Rafael
    [J]. MATHEMATICAL STRUCTURES IN COMPUTER SCIENCE, 2011, 21 (06) : 1183 - 1205
  • [20] Secure information flow by self-composition
    Barthe, G
    D'Argenio, PR
    Rezk, T
    [J]. 17TH IEEE COMPUTER SECURITY FOUNDATIONS WORKSHOP, PROCEEDINGS, 2004, : 100 - 114
12345