Non-disclosure for distributed mobile code

Authors:
Ana Almeida Matos
Affiliations:
INRIA Sophia Antipolis
Venue:
FSTTCS '05 Proceedings of the 25th international conference on Foundations of Software Technology and Theoretical Computer Science
Year:
2005

Citing 15
Cited 2

Polymorphic effect systems

POPL '88 Proceedings of the 15th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Secure information flow in a multi-threaded imperative language

POPL '98 Proceedings of the 25th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
A sound type system for secure flow analysis

Journal of Computer Security
A lattice model of secure information flow

Communications of the ACM
Secure program partitioning

ACM Transactions on Computer Systems (TOCS)
Noninterference for concurrent programs and thread systems

Theoretical Computer Science
Secure Information Flow as Typed Process Behaviour

ESOP '00 Proceedings of the 9th European Symposium on Programming Languages and Systems
Boxed Ambients

TACS '01 Proceedings of the 4th International Symposium on Theoretical Aspects of Computer Software
Information Flow vs. Resource Access in the Asynchronous Pi-Calculus

ICALP '00 Proceedings of the 27th International Colloquium on Automata, Languages and Programming
The Impact of Synchronisation on Secure Information Flow in Concurrent Programs

PSI '02 Revised Papers from the 4th International Andrei Ershov Memorial Conference on Perspectives of System Informatics: Akademgorodok, Novosibirsk, Russia
A New Type System for Secure Information Flow

CSFW '01 Proceedings of the 14th IEEE workshop on Computer Security Foundations
On Declassification and the Non-Disclosure Policy

CSFW '05 Proceedings of the 18th IEEE workshop on Computer Security Foundations
Dimensions and Principles of Declassification

CSFW '05 Proceedings of the 18th IEEE workshop on Computer Security Foundations
On typing information flow

ICTAC'05 Proceedings of the Second international conference on Theoretical Aspects of Computing
Language-based information-flow security

IEEE Journal on Selected Areas in Communications

On declassification and the non-disclosure policy

Journal of Computer Security - 18th IEEE Computer Security Foundations Symposium (CSF 18)
Non-disclosure for distributed mobile code

Mathematical Structures in Computer Science - Programming Language Interference and Dependence

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper addresses the issue of confidentiality and declassification for global computing in a language-based security perspective. The purpose is to deal with new forms of security leaks, which we call migration leaks, introduced by code mobility. We present a generalization of the non-disclosure policy [AB05] to networks, and a type and effect system for enforcing it. We consider an imperative higher-order lambda-calculus with concurrent threads and a flow declaration construct, enriched with a notion of domain and a standard migration primitive.