Verification of information flow and access control policies with dependent types

Proceedings - IEEE Symposium on Security and Privacy

Volumn , Issue , 2011, Pages 165-179

  Nanevski, Aleksandar ^a   Banerjee, Anindya ^a   Garg, Deepak ^b  

^a IMDEA SOFTWARE INSTITUTE   (Spain)

^b CARNEGIE MELLON UNIVERSITY   (United States)

Author keywords

Access control; Information flow; Type theory

Indexed keywords

FORMAL LANGUAGES; MEMORY ARCHITECTURE; SECURITY SYSTEMS; THEOREM PROVING;

ACCESS CONTROL POLICIES; DEPENDENT TYPES; HIGHER ORDER FUNCTIONS; INFORMATION ACCESS CONTROL; INFORMATION FLOW CONTROL; INFORMATION FLOWS; SECURITY POLICY; STANDARD TYPE; TYPE THEORY; VERIFICATION SYSTEMS;

ACCESS CONTROL;

EID: 80051991049     PISSN: 10816011     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SP.2011.12     Document Type: Conference Paper

References (47)

1. T. Amtoft, S. Bandhakavi, and A. Banerjee, "A logic for information flow in object-oriented programs," in POPL, 2006.
2. A. W. Appel and E. W. Felten, "Proof-carrying authentication," in ACM CCS, 1999.
3. A. Askarov and A. Sabelfeld, "Gradual release: Unifying declassification, encryption and key release policies," in IEEE Symp. Security and Privacy, 2007.
4. A. Askarov and A. Myers, "A semantic framework for declassification and endorsement," in ESOP, 2010.
5. K. Avijit, A. Datta, and R. Harper, "Distributed programming with distributed authorization," in TLDI, 2010.
6. A. Banerjee and D. A. Naumann, "Stack-based access control and secure information flow," JFP, vol. 15, no. 2, pp. 131-177, 2005.
7. A. Banerjee, D. A. Naumann, and S. Rosenberg, "Expressive declassification policies and their modular static enforcement," in IEEE Symp. Security and Privacy, 2008.
8. D. Bell and L. LaPadula, "Secure computer systems: Mathematical foundations," MITRE Corp., Tech. Rep. MTR-2547, 1973.
9. N. Benton, "Simple relational correctness proofs for static analyses and program transformations," in POPL, 2004.
10. J. Borgstrom, J. Chen, and N. Swamy, "Verifying stateful programs with substructural state and Hoare types," in PLPV, 2011.
11. J. Borgström, A. D. Gordon, and R. Pucella, "Roles, stacks, histories: A triple for Hoare," JFP, forthcoming.
12. N. Broberg and D. Sands, "Paralocks: role-based information flow control and beyond," in POPL, 2010.
13. A. Chaudhuri and D. Garg, "PCAL: Language support for proof-carrying authorization systems," in ESORICS, 2009.
14. S. Chong and A. C. Myers, "Security policies for downgrading," in ACM CCS, 2004.
15. -, "Language-based information erasure," in CSFW, 2005.
16. -, "End-to-end enforcement of erasure and declassification," in CSF, 2008.
17. D. Denning, "A lattice model of secure information flow," CACM, vol. 19, no. 5, pp. 236-242, 1976.
18. J. Goguen and J. Meseguer, "Security policies and security models," in IEEE Symp. Security and Privacy, 1982, pp. 11-20.
19. R. Harper and M. Lillibridge, "A type-theoretic approach to higher-order modules with sharing," in POPL, 1994.
20. L. Jia, J. A. Vaughan, K. Mazurak, J. Zhao, L. Zarko, J. Schorr, and S. Zdancewic, "AURA: A programming language for authorization and audit," in ICFP, 2008.
21. L. Jia and S. Zdancewic, "Encoding information flow in Aura," in PLAS, 2009.
22. X. Leroy, "Manifest types, modules, and separate compilation," in POPL, 1994.
23. P. Li and S. Zdancewic, "Arrows for secure information flow," Theoretical Comput. Sci., vol. 411, no. 19, pp. 1974-1994, 2010.
24. P. Martin-Löf, Intuitionistic Type Theory. Bibliopolis, 1984.
25. The Coq development team, The Coq proof assistant reference manual, LogiCal project, INRIA, 2009, version 8.2. [Online]. Available: http://coq.inria.fr
26. J. C. Mitchell and G. D. Plotkin, "Abstract types have existential type," ACM Trans. Prog. Lang. Syst., vol. 10, no. 3, pp. 470-502, 1988.
27. J. Morgenstern and D. Licata, "Security-typed programming within dependently-typed programming," in ICFP, 2010.
28. A. C. Myers, "JFlow: Practical mostly-static information flow control," in POPL, 1999.
29. A. Nanevski, A. Banerjee, and D. Garg, "Verification of information flow and access control policies via dependent types," IMDEA Software Iinstitute, Tech. Rep. IMDEA-SW- TR-2010.0, 2010.
30. A. Nanevski, G. Morrisett, A. Shinnar, P. Govereau, and L. Birkedal, "Ynot: Dependent types for imperative programs," in ICFP, 2008.
31. A. Nanevski, J. G. Morrisett, and L. Birkedal, "Hoare type theory, polymorphism and separation," JFP, vol. 18, no. 5-6, pp. 865-911, 2008.
32. A. Nanevski, V. Vafeiadis, and J. Berdine, "Structuring the verification of heap-manipulating programs," in POPL, 2010.
33. U. Norell, "Towards a practical programming language based on dependent type theory," Ph.D. dissertation, Chalmers University of Technology, 2007.
34. S. L. Peyton Jones and P. Wadler, "Imperative functional programming," in POPL, 1993.
35. J. C. Reynolds, "Separation logic: a logic for shared mutable data structures," in LICS, 2002.
36. A. Russo, K. Claessen, and J. Hughes, "A library for lightweight information-flow security in Haskell," in Haskell Symposium, 2008.
37. A. Russo, A. Sabelfeld, and A. Chudnov, "Tracking information flow in dynamic tree structures," in ESORICS, 2009.
38. A. Sabelfeld and D. Sands, "A PER model of secure information flow in sequential programs," in ESOP, 1999.
39. -, "Declassification: Dimensions and principles," Journal of Computer Security, vol. 17, no. 5, pp. 517-548, 2009.
40. V. Simonet, "Fine-grained information flow analysis for a λ-calculus with sum types," in CSFW, 2002.
41. N. Swamy, J. Chen, and R. Chugh, "Enforcing stateful authorization and information flow policies in Fine," in ESOP, 2010.
42. N. Swamy, B. J. Corcoran, and M. Hicks, "Fable: A language for enforcing user-defined security policies," in IEEE Symp. Security and Privacy, 2008, full version: Technical report CS-TR-4895, Univ. Maryland.
43. N. Swamy, M. Hicks, S. Tse, and S. Zdancewic, "Managing policy updates in security-typed languages," in CSFW, 2006.
44. T. Terauchi and A. Aiken, "Secure information flow as a safety problem," in SAS, 2005.
45. D. M. Volpano, C. E. Irvine, and G. Smith, "A sound type system for secure flow analysis," Journal of Computer Security, vol. 4, no. 2/3, pp. 167-188, 1996.
46. H. Yang, "Relational separation logic," Theoretical Comput. Sci., vol. 375, pp. 308-334, 2007. (Pubitemid 46528654)
47. H. Yang and P. W. O'Hearn, "A semantic basis for local reasoning," in FoSSaCS, 2002.