Fine-grained information flow analysis and enforcement in a Java virtual machine

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn , Issue , 2007, Pages 463-474

  Chandra, Deepak ^a   Franz, Michael ^a  

^a UNIVERSITY OF CALIFORNIA   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

BENCHMARKING; COMPUTER PROGRAMMING LANGUAGES; KETONES; SECURITY SYSTEMS; STATIC ANALYSIS;

APPLICATION DOMAINS; COMPUTER SECURITY APPLICATIONS; CONTROL FLOWS; INFORMATION FLOWS; INFORMATION-FLOW ANALYSIS; JAVA CLASS FILES; JAVA VIRTUAL MACHINE; POLICY CHANGES; RUN-TIME; SOURCE CODING; STATIC AND DYNAMIC;

COMPUTER APPLICATIONS;

EID: 48649085342     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ACSAC.2007.37     Document Type: Conference Paper

References (39)

1. M. Abadi, A. Banerjee, N. Heintze, and J. G. Riecke. A core calculus of dependency. In POPL '99: Proceedings of the 26th ACM SIGPLAN-SIGACT symposium on Principles of programming languages, pages 147-160, 1999.
2. M. Abadi, B. Lampson, and J.-J. Levy. Analysis and caching of dependencies. In ICFP '96: Proceedings of the First ACM SIGPLAN International Conference on Functional Programming, pages 83-91, 1996.
3. J.-P. Banâtre and C. Bryce. Information flow control in a parallel language framework. In CSFW '93: Proceedings of the 6th IEEE Computer Security Foundations Workshop, pages 39-52, 1993.
4. J.-P. Banâtre, C. Bryce, and D. Le Métayer. An approach to information security in distributed systems. In Proceedings of the IEEE International Workshop on Future Trends in Distributed Computing Systems, pages 384-394, 1995.
5. A. Banerjee and D. A. Naumann. Secure information flow and pointer confinement in a java-like language. In CSFW '02: Proceedings of the 15th IEEE Computer Security Foundations Workshop, pages 253-267, 2002.
6. H. Barendregt. The Lambda Calculus, Its Syntax and Semantics. North-Holland, 1984.
7. D. Bell and L. LaPadula. Secure computer systems: mathematical foundations. Report MTR 2547 v2, MITRE, November 1973.
8. C. Bernardeschi, N. D. Francesco, and G. Lettieri. Using standard verifier to check secure information flow in java bytecode. In COMPSAC '02: Proceedings of the 26th International Computer Software and Applications Conference, pages 850-855, 2002.
9. C. Bodei, P. Degano, F. Nielson, and H. R. Nielson. Static analysis for secrecy and non-interference in networks of processes. In PACT '01: Proceedings of the 6th International Conference on Parallel Computing Technologies, pages 27-41, 2001.
10. C. Bodei, P. Degano, F. Nielson, and H. Riis Nielson. Static analysis for the π-calculus with applications to security. Information and Computation, 168:68-92, 2001.
11. J. Bull, L. Smith, M. Westhead, D. Henty, and R. Davey. Benchmarking Java Grande applications. In Proceedings of the Second International Conference on The Practical Applications of Java, pages 63-73, April 2000.
12. K. Cooper, T. Harvey, and K. Kennedy. A simple, fast dominance algorithm. Available at http://www.cs.rice.edu/ keith/embed., 2001.
13. D. E. Denning. A lattice model of secure information flow. Communications of the ACM, 19(5):236-243, 1976.
14. D. E. Denning and P. J. Denning. Certification of programs for secure information flow. Communications of the ACM, 20(7):504-513, 1977.
15. Department of Defense. Trusted Computer System Evaluation Criteria, DOD standard 5200.28-STD. 1985.
16. Ú. Erlingsson and F. B. Schneider. SASI Enforcement of Security Policies: A Retrospective. In New Security Paradigms Workshop, pages 87-95, Ontario, Canada, 22-24 1999. ACM SIGSAC, ACM Press.
17. U. Erlingsson and F. B. Schneider. IRM enforcement of Java stack inspection. In IEEE Symposium on Security and Privacy, pages 246-255, 2000.
18. D. Evans and D. Larochelle. Improving security using extensible lightweight static analysis. IEEE Software, Jan/Feb, 2002.
19. R. J. Feiertag, K. N. Levitt, and L. Robinson. Proving multilevel security of a system design. In SOSP '77: Proceedings of the sixth ACM symposium on Operating systems principles, pages 57-65, 1977.
20. J. Fenton. Information Protection Systems. PhD thesis, University of Cambridge, England, 1973.
21. V. Haldar, D. Chandra, and M. Franz. Dynamic taint propagation for Java. In ACSAC '05: Proceedings of the 21st Annual Computer Security Applications Conference, pages 303-311, 2005.
22. V. Haldar, D. Chandra, and M. Franz. Practical, dynamic information flow for virtual machines. In International Workshop on Programming Language Interference and Dependence, September 2005.
23. N. Heintze and J. G. Riecke. The SLam calculus: programming with secrecy and integrity. In POPL '98: Proceedings of the 25th ACM SIGPLAN-SIGACT symposium on Principles of programming languages, pages 365-377, 1998.
24. Y.-W. Huang, F. Yu, C. Hang, C.-H. Tsai, D.-T. Lee, and S.-Y. Kuo. Securing web application code by static analysis and runtime protection. In WWW '04: Proceedings of the 13th international World Wide Web conference, pages 40-52, 2004.
25. P. A. Karger, T. E. Leonard, and A. H. Mason. Computer with virtual machine mode and multiple protection rings, U.S. Patent No. 4787031, November 1988.
26. B. W. Lampson. A note on the confinement problem. Communications of the ACM, 16(10):613-615, 1973.
27. J. K. Millen. Security kernel validation in practice. Communications of the ACM, 19(5):243-250, 1976.
28. J. K. Millen. Information flow analysis of formal specifications. In SP '81: Proceedings of the 1981 IEEE Symposium on Security and Privacy, page 3, 1981.
29. M. Mizuno and D. A. Schmidt. A security flow control algorithm and its denotational semantics correctness proof. Formal Aspects of Computing, 4(6A):727-754, 1992.
30. A. C. Myers. JFlow: Practical mostly-static information flow control. In Symposium on Principles of Programming Languages, pages 228-241, 1999.
31. A. C. Myers. Mostly-static decentralized information flow control. PhD thesis, Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer Science, 1999.
32. R. Rhode. Secure multilevel virtual computer systems. Technical Report ESD-TR-74-370, MITRE Corp., Bedford, Massachussetts, 1975.
33. F. B. Schneider. Enforceable Security Policies. ACM Transactions on Information and System Security, 3(1):30-50, 2000.
34. U. Shankar, K. Talwar, J. S. Foster, and D. Wagner. Detecting format string vulnerabilities with type qualifiers. In 10th USENIX Security Symposium, pages 201-220, 2001.
35. N. Vachharajani, M. J. Bridges, J. Chang, R. Rangan, G. Ottoni, J. A. Blome, G. A. Reis, M. Vachharajani, and D. I. August. Rifle: An architectural framework for user-centric information-flow security. In 37th International Symposium on Microarchitecture, December 2004.
36. R. Vallee-Rai, L. Hendren, V. Sundaresan, P. Lam, E. Gagnon, and P. Co. Soot - a Java bytecode optimization framework. In CASCON '99: Proceedings of the 1999 IBM Center for Advanced Studies Conference on Collaborative research, pages 125-135, 1999.
37. D. Volpano and G. Smith. Eliminating covert flows with minimum typings. In CSFW '97: Proceedings of the 10th IEEE Computer Security Foundations Workshop, page 156, Washington, DC, USA, 1997. IEEE Computer Society.
38. D. Volpano, G. Smith, and C. Irvine. A sound type system for secure flow analysis. Journal of Computer Security, 4(3):167-187, 1996.
39. C. Weissman. Secure computer operation with virtual machine partitioning. In National Computer Conference, May 19-22, 1975, Anaheim, California, pages 929-934, 1975.