Content dependent information flow control

Research output: Research - peer-reviewJournal article – Annual report year: 2017

View graph of relations

Information flow control extends access control by not only regulating who is allowed to access what data but also the subsequent use of the data. Applications within communications systems require such information flow control to be dependent on the actual contents of the data. We develop a combined Hoare logic and type system for enforcing content dependent information flow policies dealing with both integrity and confidentiality. We establish the soundness of the Hoare logic with respect to an instrumented operational semantics and illustrate the development on a running example. We also argue that a well-established approach to non-interference fails to distinguish between integrity and confidentiality. The development is performed for programs written in a concurrent language with synchronous communication and separate data domains.

Original languageEnglish
JournalJournal of Logical and Algebraic Methods in Programming
Volume87
Pages (from-to)6-32
ISSN2352-2208
DOIs
StatePublished - 1 Feb 2017
CitationsWeb of Science® Times Cited: 2

    Research areas

  • Content-dependent policies, Hoare logic, Information flow control, Instrumented semantics, Non-interference, Type systems
Download as:
Download as PDF
Select render style:
APAAuthorCBE/CSEHarvardMLAStandardVancouverShortLong
PDF
Download as HTML
Select render style:
APAAuthorCBE/CSEHarvardMLAStandardVancouverShortLong
HTML
Download as Word
Select render style:
APAAuthorCBE/CSEHarvardMLAStandardVancouverShortLong
Word

ID: 140488527