Title :
Securing interaction between threads and the scheduler
Author :
Russo, Alejandro ; Sabelfeld, Andrei
Author_Institution :
Dept. of Comput. Sci. & Eng., Chalmers Univ. of Technol., Goteborg
Abstract :
The problem of information flow in multithreaded programs remains an important open challenge. Existing approaches to specifying and enforcing information flow security often suffer from over-restrictiveness, relying on non-standard semantics, lack of compositionality, inability to handle dynamic threads, scheduler dependence, and efficiency overhead for code that results from security-enforcing transformations. This paper suggests a remedy for some of these shortcomings by developing a novel treatment of the interaction between threads and the scheduler. As a result, we present a permissive noninterference-like security specification and a compositional security type system that provably enforces this specification. The type system guarantees security for a wide class of schedulers and provides a flexible and efficiency-friendly treatment of dynamic threads
Keywords :
formal specification; multi-threading; security of data; code overhead; compositional security type system; dynamic threads; information flow security; multithreaded programs; nonstandard semantics; permissive noninterference-like security specification; scheduler dependence; security-enforcing transformations; threads-scheduler secure interaction; Computer science; Computer security; Concurrent computing; Data security; Dynamic scheduling; Information security; Multithreading; Pressing; Processor scheduling; Yarn;
Conference_Titel :
Computer Security Foundations Workshop, 2006. 19th IEEE
Conference_Location :
Venice
Print_ISBN :
0-7695-2615-2
DOI :
10.1109/CSFW.2006.29
