Title :
Complete, safe information flow with decentralized labels
Author :
Myers, Andrew C. ; Liskov, Barbara
Author_Institution :
Lab. for Comput. Sci., MIT, Cambridge, MA, USA
Abstract :
The growing use of mobile code in downloaded applications and servlets has increased interest in robust mechanisms for ensuring privacy and secrecy. Information flow control is intended to directly address privacy and secrecy concerns, but most information flow models are too restrictive to be widely used. The decentralized label model is a new information flow model that extends traditional models with per-principal information flow policies and also permits a safe form of declassification. This paper extends this new model further, making it more flexible and expressive. We define a new formal semantics for decentralized labels and a corresponding new rule for relabeling data that is both sound and complete. We also show that these extensions preserve the ability to statically check information flow
Keywords :
data privacy; distributed processing; information theory; safety; security of data; software portability; telecommunication control; completeness; data relabeling; decentralized labels; declassification; downloaded applications; information flow control; mobile code; model expressiveness; model flexibility; per-principal information flow policies; privacy; robust mechanisms; safety; secrecy; servlets; soundness; static checking; Application software; Computer science; Contracts; Information analysis; Laboratories; Mobile computing; Monitoring; Privacy; Programming profession; Protection;
Conference_Titel :
Security and Privacy, 1998. Proceedings. 1998 IEEE Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-8386-4
DOI :
10.1109/SECPRI.1998.674834
