Flow Policy Awareness for Distributed Mobile Code

Authors:
Ana Almeida Matos
Affiliations:
SQIG-Instituto de Telecomunicações and Instituto Superior Técnico de Lisboa,
Venue:
CONCUR 2009 Proceedings of the 20th International Conference on Concurrency Theory
Year:
2009

Citing 12
Cited 2

Polymorphic effect systems

POPL '88 Proceedings of the 15th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Proof-carrying code

Proceedings of the 24th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
A lattice model of secure information flow

Communications of the ACM
Secure program partitioning

ACM Transactions on Computer Systems (TOCS)
Noninterference for concurrent programs and thread systems

Theoretical Computer Science
A unifying approach to the security of distributed and multi-threaded programs

Journal of Computer Security - Special issue on CSFW14
On Declassification and the Non-Disclosure Policy

CSFW '05 Proceedings of the 18th IEEE workshop on Computer Security Foundations
Declassification: Dimensions and principles

Journal of Computer Security - 18th IEEE Computer Security Foundations Symposium (CSF 18)
Security Policies as Membranes in Systems for Global Computing

Electronic Notes in Theoretical Computer Science (ENTCS)
History-based access control for distributed processes

TGC'05 Proceedings of the 1st international conference on Trustworthy global computing
A generic membrane model (note)

GC'04 Proceedings of the 2004 IST/FET international conference on Global Computing
Language-based information-flow security

IEEE Journal on Selected Areas in Communications

Non-disclosure for distributed mobile code

Mathematical Structures in Computer Science - Programming Language Interference and Dependence
Typing illegal information flows as program effects

Proceedings of the 7th Workshop on Programming Languages and Analysis for Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

In the context of global computing, information flow security must deal with the decentralized nature of security policies. This issue is particularly challenging when programs are given the flexibility to perform declassifying instructions. We point out potential unwanted behaviors that can arise in a context where such programs can migrate between computation domains with different security policies. We propose programming language techniques for tackling such unwanted behaviors, and prove soundness of those techniques at the global computation level.