CiteSeerX — Complete, Safe Information Flow with Decentralized Labels

Complete, Safe Information Flow with Decentralized Labels (1998) [52 citations — 7 self]

Popular Tags

No tags have been applied to this document.

BibTeX | Add To MetaCart

@INPROCEEDINGS{Myers98complete,safe,
    author = {Andrew C. Myers and Barbara Liskov},
    title = {Complete, Safe Information Flow with Decentralized Labels},
    booktitle = {In Proc. IEEE Symposium on Security and Privacy},
    year = {1998},
    pages = {186--197}
}

Years of Citing Articles

Bookmarks

OpenURL

Abstract:

The growing use of mobile code in downloaded applications and servlets has increased interest in robust mechanisms for ensuring privacy and secrecy. Information flow control is intended to directly address privacy and secrecy concerns, but most information flow models are too restrictive to be widely used. The decentralized label model is a new information flow model that extends traditional models with per-principal information flow policies and also permits a safe form of declassification. This paper extends this new model further, making it more flexible and expressive. We define a new formal semantics for decentralized labels and a corresponding new rule for relabeling data that is both sound and complete. We also show that these extensions preserve the ability to statically check information flow. 1 Introduction The growing use of mobile code in downloaded applications and servlets has increased interest in robust mechanisms for ensuring privacy and secrecy. A key problem is tha...

Citations

426	Secure Computer Systems: Unified Exposition and Multics Interpretation – Bell, LaPadula - 1975
370	A Lattice Model of Secure Information Flow – Denning - 1976
264	A sound type system for secure flow analysis – Volpano, Smith, et al. - 1996
256	Certification of programs for secure information flow – Denning, Denning - 1977
238	The Chinese Wall security policy – Brewer, Nash - 1989
213	Secrecy by Typing in Security Protocols – Abadi - 1997
180	The SLam calculus: Programming with secrecy and integrity – Heintze, Riecke - 1998
150	Secure information flow in a multi-threaded imperative language – Smith, Volpano - 1998
120	A decentralized model for information flow control – Myers, Liskov - 1997
62	Protection and the control of information sharing in multics – Saltzer - 1974
58	Elements of style: Analyzing a software design feature with a counterexample detector – Jackson, Damon - 1996
56	An axiomatic approach to information flow in programs – Andrews, Reitman - 1980
33	Providing flexibility in information flow control for object-oriented systems – Ferrari, Samarati, et al. - 1997
32	Trust in the -calculus – rbaek, Palsberg - 1997
27	A language extension for expressing constraints on data access – JONES, LISKOV - 1978
15	Cacl: Efficient finegrained protection for objects – Richardson, Schwartz, et al. - 1992
11	Provably-Secure Programming Languages for Remote Evaluation – Volpano - 1996
9	LouAnna Notargiacomo. Beyond the pale of MAC and DAC—defining new forms of access control – McCollum, Messing - 1990
7	A taxonomy for information flow policies and models – Foley - 1991
3	A comparison of commerical and military computer security policies – Clark, Wilson - 1987