DocumentCode
1642450
Title
Information Flow Monitor Inlining
Author
Chudnov, Andrey ; Naumann, David A.
Author_Institution
Stevens Inst. of Technol., Hoboken, NJ, USA
fYear
2010
Firstpage
200
Lastpage
214
Abstract
In recent years it has been shown that dynamic monitoring can be used to soundly enforce information flow policies. For programs distributed in source or bytecode form, the use of just-in-time (JIT) compilation makes it difficult to implement monitoring by modifying the language runtime system. An inliner avoids this problem and also serves to provide monitoring for more than one runtime. We show how to inline an information flow monitor, specifically a flow sensitive one previously proved to enforce termination insensitive noninterference. We prove that the inlined version is observationally equivalent to the original.
Keywords
data flow analysis; security of data; bytecode form; dynamic monitoring; information flow monitor inlining; just-in-time compilation; language runtime system; termination insensitive noninterference; Browsers; Java; Lattices; Monitoring; Runtime; Security; Semantics; Information flow; information security; program transformation; reference monitors;
fLanguage
English
Publisher
ieee
Conference_Titel
Computer Security Foundations Symposium (CSF), 2010 23rd IEEE
Conference_Location
Edinburgh
ISSN
1940-1434
Print_ISBN
978-1-4244-7510-0
Electronic_ISBN
1940-1434
Type
conf
DOI
10.1109/CSF.2010.21
Filename
5552643
Link To Document