Abstract
Content-dependency often plays an important role in the information flow security of real world IT systems. Content dependency gives rise to informative policies and permissive static enforcement, and sometimes avoids the need for downgrading. We develop a static type system to soundly enforce future-dependent flow policies- policies that can depend on not only the current values of variables, but also their final values. The final values are referred to using what we call prophetic variables, just as the initial values can be referenced using logical variables in Hoare logic. We develop and enforce a notion of future-dependent security for open systems, in the spirit of "non-deducibility on strategies". We also illustrate our approach in scenarios where future-dependency has advantages over present-dependency and avoids mixtures of upgradings and downgradings.
Original language | English |
---|---|
Title of host publication | Proceedings of the 2016 ACM Workshop on Programming Languages and Analysis for Security |
Publisher | Association for Computing Machinery |
Publication date | 2016 |
Pages | 29-42 |
ISBN (Print) | 978-1-4503-4574-3 |
DOIs | |
Publication status | Published - 2016 |
Event | 2016 ACM Workshop on Programming Languages and Analysis for Security - Vienna, Austria Duration: 24 Oct 2016 → 24 Oct 2016 |
Conference
Conference | 2016 ACM Workshop on Programming Languages and Analysis for Security |
---|---|
Country/Territory | Austria |
City | Vienna |
Period | 24/10/2016 → 24/10/2016 |