Secure information flow as a safety problem

Tachio Terauchi; Alex Aiken

doi:10.1007/11547662_24

Secure information flow as a safety problem

Tachio Terauchi^*, Alex Aiken

^*この研究の対応する著者

研究成果: Conference contribution

187 被引用数 (Scopus)

抄録

The termination insensitive secure information flow problem can be reduced to solving a safety problem via a simple program transformation. Barthe, D'Argenio, and Rezk coined the term "self-composition" to describe this reduction. This paper generalizes the self-compositional approach with a form of information downgrading recently proposed by Li and Zdancewic. We also identify a problem with applying the self-compositional approach in practice, and we present a solution to this problem that makes use of more traditional type-based approaches. The result is a framework that combines the best of both worlds, i.e., better than traditional type-based approaches and better than the self-compositional approach.

本文言語	English
ホスト出版物のタイトル	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
ページ	352-367
ページ数	16
DOI	https://doi.org/10.1007/11547662_24
出版ステータス	Published - 2005
外部発表	はい
イベント	12th International Symposium on Static Analysis, SAS 2005 - London, United Kingdom 継続期間: 2005 9月 7 → 2005 9月 9

出版物シリーズ

名前	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
巻	3672 LNCS
ISSN（印刷版）	0302-9743
ISSN（電子版）	1611-3349

Other

Other	12th International Symposium on Static Analysis, SAS 2005
国/地域	United Kingdom
City	London
Period	05/9/7 → 05/9/9

ASJC Scopus subject areas

理論的コンピュータサイエンス
コンピュータサイエンス（全般）

文献へのアクセス

10.1007/11547662_24

他のファイルとリンク

引用スタイル

Terauchi, T., & Aiken, A. (2005). Secure information flow as a safety problem. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (pp. 352-367). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3672 LNCS). https://doi.org/10.1007/11547662_24

Secure information flow as a safety problem. / Terauchi, Tachio; Aiken, Alex.
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). 2005. p. 352-367 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3672 LNCS).

研究成果: Conference contribution

Terauchi, T & Aiken, A 2005, Secure information flow as a safety problem. in Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 3672 LNCS, pp. 352-367, 12th International Symposium on Static Analysis, SAS 2005, London, United Kingdom, 05/9/7. https://doi.org/10.1007/11547662_24

Terauchi T, Aiken A. Secure information flow as a safety problem. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). 2005. p. 352-367. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/11547662_24

@inproceedings{7447574f3ab043eb9b2358849a293b50,

title = "Secure information flow as a safety problem",

abstract = "The termination insensitive secure information flow problem can be reduced to solving a safety problem via a simple program transformation. Barthe, D'Argenio, and Rezk coined the term {"}self-composition{"} to describe this reduction. This paper generalizes the self-compositional approach with a form of information downgrading recently proposed by Li and Zdancewic. We also identify a problem with applying the self-compositional approach in practice, and we present a solution to this problem that makes use of more traditional type-based approaches. The result is a framework that combines the best of both worlds, i.e., better than traditional type-based approaches and better than the self-compositional approach.",

author = "Tachio Terauchi and Alex Aiken",

year = "2005",

doi = "10.1007/11547662_24",

language = "English",

isbn = "3540285849",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "352--367",

booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

note = "12th International Symposium on Static Analysis, SAS 2005 ; Conference date: 07-09-2005 Through 09-09-2005",

}

TY - GEN

T1 - Secure information flow as a safety problem

AU - Terauchi, Tachio

AU - Aiken, Alex

PY - 2005

Y1 - 2005

N2 - The termination insensitive secure information flow problem can be reduced to solving a safety problem via a simple program transformation. Barthe, D'Argenio, and Rezk coined the term "self-composition" to describe this reduction. This paper generalizes the self-compositional approach with a form of information downgrading recently proposed by Li and Zdancewic. We also identify a problem with applying the self-compositional approach in practice, and we present a solution to this problem that makes use of more traditional type-based approaches. The result is a framework that combines the best of both worlds, i.e., better than traditional type-based approaches and better than the self-compositional approach.

AB - The termination insensitive secure information flow problem can be reduced to solving a safety problem via a simple program transformation. Barthe, D'Argenio, and Rezk coined the term "self-composition" to describe this reduction. This paper generalizes the self-compositional approach with a form of information downgrading recently proposed by Li and Zdancewic. We also identify a problem with applying the self-compositional approach in practice, and we present a solution to this problem that makes use of more traditional type-based approaches. The result is a framework that combines the best of both worlds, i.e., better than traditional type-based approaches and better than the self-compositional approach.

UR - http://www.scopus.com/inward/record.url?scp=33646037706&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33646037706&partnerID=8YFLogxK

U2 - 10.1007/11547662_24

DO - 10.1007/11547662_24

M3 - Conference contribution

AN - SCOPUS:33646037706

SN - 3540285849

SN - 9783540285847

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 352

EP - 367

BT - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

T2 - 12th International Symposium on Static Analysis, SAS 2005

Y2 - 7 September 2005 through 9 September 2005

ER -

Secure information flow as a safety problem

抄録

出版物シリーズ

Other

ASJC Scopus subject areas

文献へのアクセス

他のファイルとリンク

フィンガープリント

引用スタイル