Type Abstraction for Relaxed Noninterference *

Raimil Cruz 1 Tamara Rezk 2 Bernard Serpette 2, 3 Éric Tanter 1
2 INDES - Secure Diffuse Programming
CRISAM - Inria Sophia Antipolis - Méditerranée
3 Phoenix - Programming Language Technology For Communication Services
EA4136 - Handicap et système nerveux :Action, communication, interaction: rétablissement de la fonction et de la participation [Bordeaux], Inria Bordeaux - Sud-Ouest, LaBRI - Laboratoire Bordelais de Recherche en Informatique
Abstract : Information-flow security typing statically prevents confidential information to leak to public channels. The fundamental information flow property, known as noninterference, states that a public observer cannot learn anything from private data. As attractive as it is from a theoretical viewpoint, noninterference is impractical: real systems need to intentionally declassify some information, selectively. Among the different information flow approaches to declassification, a particularly expressive approach was proposed by Li and Zdancewic, enforcing a notion of relaxed noninterference by allowing programmers to specify declassification policies that capture the intended manner in which public information can be computed from private data. This paper shows how we can exploit the familiar notion of type abstraction to support expressive declassification policies in a simpler, yet more expressive manner. In particular, the type-based approach to declassification—which we develop in an object-oriented setting—addresses several issues and challenges with respect to prior work, including a simple notion of label ordering based on subtyping, support for recursive declassification policies, and a local, modular reasoning principle for relaxed noninterference. This work paves the way for integrating declassification policies in practical security-typed languages.
Document type :
Conference papers
Complete list of metadatas

https://hal.archives-ouvertes.fr/hal-01637023
Contributor : Tamara Rezk <>
Submitted on : Tuesday, February 12, 2019 - 2:29:15 PM
Last modification on : Wednesday, February 13, 2019 - 6:30:03 PM
Long-term archiving on : Monday, May 13, 2019 - 4:23:59 PM

File

LIPIcs-ECOOP-2017-7(1).pdf
Files produced by the author(s)

Identifiers

Citation

Raimil Cruz, Tamara Rezk, Bernard Serpette, Éric Tanter. Type Abstraction for Relaxed Noninterference *. ECOOP 2017 - 31st European Conference on Object-Oriented Programming, Jun 2017, Barcelona, Spain. pp.1-27, ⟨10.4230/LIPIcs.ECOOP.2017.53⟩. ⟨hal-01637023v2⟩

Share

Metrics

Record views

28

Files downloads

26