Secure information flow as a safety problem

Tachio Terauchi*, Alex Aiken

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contribution

166 Citations (Scopus)

Abstract

The termination insensitive secure information flow problem can be reduced to solving a safety problem via a simple program transformation. Barthe, D'Argenio, and Rezk coined the term "self-composition" to describe this reduction. This paper generalizes the self-compositional approach with a form of information downgrading recently proposed by Li and Zdancewic. We also identify a problem with applying the self-compositional approach in practice, and we present a solution to this problem that makes use of more traditional type-based approaches. The result is a framework that combines the best of both worlds, i.e., better than traditional type-based approaches and better than the self-compositional approach.

Original languageEnglish
Title of host publicationLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Pages352-367
Number of pages16
DOIs
Publication statusPublished - 2005
Externally publishedYes
Event12th International Symposium on Static Analysis, SAS 2005 - London, United Kingdom
Duration: 2005 Sep 72005 Sep 9

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume3672 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other12th International Symposium on Static Analysis, SAS 2005
Country/TerritoryUnited Kingdom
CityLondon
Period05/9/705/9/9

ASJC Scopus subject areas

  • Theoretical Computer Science
  • Computer Science(all)

Fingerprint

Dive into the research topics of 'Secure information flow as a safety problem'. Together they form a unique fingerprint.

Cite this