End-to-end enforcement of erasure and declassification

Proceedings - IEEE Computer Security Foundations Symposium

Volumn , Issue , 2008, Pages 98-111

  Chong, Stephen ^a   Myers, Andrew C ^a  

^a Department of Obstetrics Gynecology

Author keywords

[No Author keywords available]

Indexed keywords

CASE STUDIES; COMPUTER SECURITY; PROGRAMMING LANGUAGES; RUN-TIME;

COMPUTER NETWORKS; FOUNDATIONS; INFORMATION THEORY; LINGUISTICS; MECHANISMS; SECURITY SYSTEMS; VOTING MACHINES;

CONTROL SYSTEMS;

EID: 51749115761     PISSN: 19401434     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CSF.2008.12     Document Type: Conference Paper

References (26)

1. A. Banerjee, D. A. Naumann, and S. Rosenberg. Expressive declassiflcation policies and modular static enforcement. Technical Report CS Report 2007-04, Stevens Institute of Technology, Nov. 2007.
2. S. Chong and A. C. Myers. Language-based information erasure. In Proc. 18th IEEE Computer Security Foundations Workshop, pages 241-254, June 2005.
3. S. Chong and A. C. Myers. End-to-end enforcement of erasure and declassiflcation. Technical Report http://hdl. handle.net/1813/10504, Cornell University, Apr. 2008.
4. M. R. Clarkson, S. Chong, and A. C. Myers. Civitas: A secure voting system. In Proc. IEEE Symposium on Security and Privacy, May 2008.
5. D. E. Denning and P. J. Denning. Certification of programs for secure information flow. Comm. of the ACM, 20(7):504-513, July 1977.
6. C. Flanagan. Hybrid type checking. In Proc. 33rd ACM Symp. on Principles of Programming Languages (POPL), pages 245-256, 2006.
7. J. A. Goguen and J. Meseguer. Security policies and security models. In Proc. IEEE Symposium on Security and Privacy, pages 11-20, Apr. 1982.
8. J. Gosling, B. Joy, G. Steele, and G. Bracha. The Java Language Specification. Addison Wesley, 2nd edition, 2000. ISBN 0-201-31008-2.
9. R. R. Hansen and C. W. Probst. Secure dynamic program repartitioning. In Proc. Nordic Workshop on Secure IT-Systems, Oct. 2005.
10. R. R. Hansen and C. W. Probst. Non-interference and erasure policies for Java Card bytecode. In Proc. 6th International Workshop on Issues in the Theory of Security, Mar. 2006.
11. S. Hunt and D. Sands. On flow-sensitive security types. In Proc. 33rd ACM Symp. on Principles of Programming Languages (POPL), pages 79-90, 2006.
12. S. Hunt and D. Sands. Just forget it-the semantics and enforcement of information erasure. In Proc. 17th European Symposium on Programming, Mar. 2008.
13. A. Juels, D. Catalano, and M. Jakobsson. Coercion-resistant electronic elections. In Workshop on Privacy in the Electronic Society, pages 61-70, Nov. 2005.
14. B. Lampson, M. Abadi, M. Burrows, and E. Wobber. Authentication in distributed systems: Theory and practice. In Proc. 13th ACM Symp. on Operating System Principles (SOSP), pages 165-182, October 1991. Operating System Review, 253(5).
15. A. C. Myers. JFlow: Practical mostly-static information flow control. In Proc. 26th ACM Symp. on Principles of Programming Languages (POPL), pages 228-241, Jan. 1999.
16. A. C. Myers and B. Liskov. A decentralized model for information flow control. In Proc. 17th ACM Symp. on Operating System Principles (SOSP), pages 129-142, 1997.
17. A. C. Myers and B. Liskov. Protecting privacy using the decentralized label model. ACM Transactions on Software Engineering and Methodology, 9(4):410-442, Oct. 2000.
18. A. C. Myers, L. Zheng, S. Zdancewic, S. Chong, and N. Nystrom. Jif: Java information flow. Software release, http: //www.cs. Cornell.edu/jif, July 2001.
19. F. Pottier and S. Conchon. Information flow inference for free. In Proc. 5th ACM SIGPLAN International Conference on Functional Programming (ICFP), pages 46-57, 2000.
20. F. Pottier and V. Simonet. Information flow inference for ML. In Proc. 29th ACM Symp. on Principles of Programming Languages (POPL), pages 319-330, 2002.
21. A. Sabelfeld and A. C. Myers. Language-based informationflow security. IEEE Journal on Selected Areas in Communications, 21(1):5-19, Jan. 2003.
22. A. Sabelfeld and D. Sands. Dimensions and principles of declassification. In Proc. 18th IEEE Computer Security Foundations Workshop, pages 255-269, June 2005.
23. D. Søndergaard, Secure program partitioning in dynamic networks. Master's thesis, Technical University of Denmark, 2006. IMM-M. Sc-2006-92.
24. S. Tse and S. Zdancewic. Designing a security-typed language with certificate-based declassification. In Proc. 14th European Symposium on Programming, 2005.
25. D. Volpano, G. Smith, and C. Irvine. A sound type system for secure flow analysis. Journal of Computer Security, 4(3):167-187, 1996.
26. S. Zdancewic, L. Zheng, N. Nystrom, and A. C. Myers. Untrusted hosts and confidentiality: Secure program partitioning. In Proc. 18th ACM Symp. on Operating System Principles (SOSP), pages 1-14, Oct. 2001.