Title :
Protecting privacy in a decentralized environment
Author :
Myers, Andrew C. ; Liskov, Barbara
Author_Institution :
Dept. of Comput. Sci., Cornell Univ., Ithaca, NY, USA
fDate :
6/22/1905 12:00:00 AM
Abstract :
This paper describes the decentralized label model, a new model for controlling information flow in systems with mutual distrust and decentralized authority. The model allows users to share information with distrusted code (e.g., downloaded applets), yet still control how that code disseminates the shared information to others. The model improves on existing multilevel security models by allowing users to declassify information in a decentralized way, and by improving support for fine-grained data sharing. It supports static program analysis of information flow so that programs can be certified to permit only acceptable information flows and to avoid most run-time information flow checks. In addition to presenting the model, the paper also discusses how the model can be supported in a distributed environment, including an introduction to Jif, an extension to Java that incorporates the model and permits static checking of information flow
Keywords :
Java; data privacy; distributed processing; security of data; system monitoring; Java; Jif; decentralized authority; decentralized label model; fine-grained data sharing; information flow; multilevel security models; mutual distrust; privacy protection; static program analysis; Access control; Computer science; Computer security; Data security; Identity-based encryption; Information security; Java; Privacy; Protection; Runtime;
Conference_Titel :
DARPA Information Survivability Conference and Exposition, 2000. DISCEX '00. Proceedings
Conference_Location :
Hilton Head, SC
Print_ISBN :
0-7695-0490-6
DOI :
10.1109/DISCEX.2000.825031
