Information-flow security for interactive programs

19th IEEE Computer Security Foundations Workshop (CSFW'06) Pub Date : 2006-07-05 DOI:10.1109/CSFW.2006.16

K. O'Neill, Michael R. Clarkson, Stephen Chong

{"title":"Information-flow security for interactive programs","authors":"K. O'Neill, Michael R. Clarkson, Stephen Chong","doi":"10.1109/CSFW.2006.16","DOIUrl":null,"url":null,"abstract":"Interactive programs allow users to engage in input and output throughout execution. The ubiquity of such programs motivates the development of models for reasoning about their information-flow security, yet no such models seem to exist for imperative programming languages. Further, existing language-based security conditions founded on noninteractive models permit insecure information flows in interactive imperative programs. This paper formulates new strategy-based information-flow security conditions for a simple imperative programming language that includes input and output operators. The semantics of the language enables a fine-grained approach to the resolution of nondeterministic choices. The security conditions leverage this approach to prohibit refinement attacks while still permitting observable nondeterminism. Extending the language with probabilistic choice yields a corresponding definition of probabilistic noninterference. A soundness theorem demonstrates the feasibility of statically enforcing the security conditions via a simple type system. These results constitute a step toward understanding and enforcing information-flow security in real-world programming languages, which include similar input and output operators","PeriodicalId":131951,"journal":{"name":"19th IEEE Computer Security Foundations Workshop (CSFW'06)","volume":"37 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2006-07-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"90","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"19th IEEE Computer Security Foundations Workshop (CSFW'06)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSFW.2006.16","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 90

Abstract

Interactive programs allow users to engage in input and output throughout execution. The ubiquity of such programs motivates the development of models for reasoning about their information-flow security, yet no such models seem to exist for imperative programming languages. Further, existing language-based security conditions founded on noninteractive models permit insecure information flows in interactive imperative programs. This paper formulates new strategy-based information-flow security conditions for a simple imperative programming language that includes input and output operators. The semantics of the language enables a fine-grained approach to the resolution of nondeterministic choices. The security conditions leverage this approach to prohibit refinement attacks while still permitting observable nondeterminism. Extending the language with probabilistic choice yields a corresponding definition of probabilistic noninterference. A soundness theorem demonstrates the feasibility of statically enforcing the security conditions via a simple type system. These results constitute a step toward understanding and enforcing information-flow security in real-world programming languages, which include similar input and output operators

查看原文本刊更多论文

交互式程序的信息流安全

交互式程序允许用户在整个执行过程中参与输入和输出。这类程序的普遍存在促使人们开发用于推断其信息流安全性的模型，然而对于命令式编程语言，似乎没有这样的模型存在。此外，基于非交互式模型的现有基于语言的安全条件允许在交互式命令式程序中使用不安全的信息流。针对一种包含输入和输出运算符的简单命令式编程语言，提出了一种新的基于策略的信息流安全条件。该语言的语义支持一种细粒度的方法来解决不确定的选择。安全条件利用这种方法来禁止细化攻击，同时仍然允许可观察到的不确定性。用概率选择扩展语言可以得到概率不干扰的相应定义。一个完备性定理证明了通过简单类型系统静态执行安全条件的可行性。这些结果构成了在现实世界的编程语言(包括类似的输入和输出操作符)中理解和实施信息流安全性的一步

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

19th IEEE Computer Security Foundations Workshop (CSFW'06)

自引率

0.00%

发文量