TU Darmstadt / ULB / TUbiblio

Controlling the What and Where of Declassification in Language-Based Security

Mantel, Heiko and Reinhard, Alexander
Nicola, Rocco De (ed.) (2007):
Controlling the What and Where of Declassification in Language-Based Security.
In: European Symposium on Programming (ESOP), Springer, In: LNCS, 4421, ISBN 978-3-540-71314-2,
[Conference or Workshop Item]

Abstract

While a rigorous information flow analysis is a key step in obtaining meaningful end-to-end confidentiality guarantees, one must also permit possibilities for declassification.Sabelfeld and Sands categorized the existing approaches to controlling declassification in their overview along four dimensions and according to four prudent principles.In this article, we propose three novel security conditions for controlling the dimensions where and what, and we explain why these conditions constitute improvements over prior approaches. Moreover, we present a type-based security analysis and, as another novelty, prove a soundness result that considers more than one dimension of declassification.

Item Type: Conference or Workshop Item
Erschienen: 2007
Editors: Nicola, Rocco De
Creators: Mantel, Heiko and Reinhard, Alexander
Title: Controlling the What and Where of Declassification in Language-Based Security
Language: ["languages_typename_1" not defined]
Abstract:

While a rigorous information flow analysis is a key step in obtaining meaningful end-to-end confidentiality guarantees, one must also permit possibilities for declassification.Sabelfeld and Sands categorized the existing approaches to controlling declassification in their overview along four dimensions and according to four prudent principles.In this article, we propose three novel security conditions for controlling the dimensions where and what, and we explain why these conditions constitute improvements over prior approaches. Moreover, we present a type-based security analysis and, as another novelty, prove a soundness result that considers more than one dimension of declassification.

Title of Book: European Symposium on Programming (ESOP)
Series Name: LNCS
Volume: 4421
Publisher: Springer
ISBN: 978-3-540-71314-2
Divisions: 20 Department of Computer Science
20 Department of Computer Science > Modeling and Analysis of Information Systems (MAIS)
Date Deposited: 31 Dec 2016 09:57
Identification Number: mantel.ea:controlling:2007
Export:
Suche nach Titel in: TUfind oder in Google

Optionen (nur für Redakteure)

View Item View Item