Restricted delegation and revocation in language-based security: (position paper)

Authors:
D. Hassan;M. R. Mousavi;M. A. Reniers
Affiliations:
National Telecommunication Institute, Egypt;TU/Eindhoven, The Netherlands;TU/Eindhoven, The Netherlands
Venue:
PLAS '10 Proceedings of the 5th ACM SIGPLAN Workshop on Programming Languages and Analysis for Security
Year:
2010

Citing 16
Cited 1

Natural semantics

4th Annual Symposium on Theoretical Aspects of Computer Sciences on STACS 87
The Z notation: a reference manual

The Z notation: a reference manual
JFlow: practical mostly-static information flow control

Proceedings of the 26th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Protecting privacy using the decentralized label model

ACM Transactions on Software Engineering and Methodology (TOSEM)
A model of OASIS role-based access control and its support for active security

ACM Transactions on Information and System Security (TISSEC)
Probabilistic Noninterference for Multi-Threaded Programs

CSFW '00 Proceedings of the 13th IEEE workshop on Computer Security Foundations
Secure Information Flow by Self-Composition

CSFW '04 Proceedings of the 17th IEEE workshop on Computer Security Foundations
Stack-based access control and secure information flow

Journal of Functional Programming
DW-RBAC: A formal security model of delegation and revocation in workflow systems

Information Systems
Run-time principals in information-flow type systems

ACM Transactions on Programming Languages and Systems (TOPLAS)
Saner: Composing Static and Dynamic Analysis to Validate Sanitization in Web Applications

SP '08 Proceedings of the 2008 IEEE Symposium on Security and Privacy
Tight Enforcement of Information-Release Policies for Dynamic Languages

CSF '09 Proceedings of the 2009 22nd IEEE Computer Security Foundations Symposium
Paralocks: role-based information flow control and beyond

Proceedings of the 37th annual ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Automata-based confidentiality monitoring

ASIAN'06 Proceedings of the 11th Asian computing science conference on Advances in computer science: secure software and related issues
The program counter security model: automatic detection and removal of control-flow side channel attacks

ICISC'05 Proceedings of the 8th international conference on Information Security and Cryptology
Language-based information-flow security

IEEE Journal on Selected Areas in Communications

Encoding secure information flow with restricted delegation and revocation in Haskell

Proceedings of the 1st annual workshop on Functional programming concepts in domain-specific languages

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we introduce a notion of restricted revocable delegation and study its consequences in language-based security. In particular, we add this notion by means of delegate and revoke commands to a simple imperative programming language. We then define an operational semantics for our programming language, in the Natural Semantics style of Gilles Kahn. We briefly discuss our initial ideas about the security properties of the semantics, which are extensions of existing variations of the renowned non-interference property, e.g., in the context of delimited information release.