TightLip: Keeping applications from spilling the beans

4th Symposium on Networked Systems Design and Implementation, NSDI 2007

Volumn , Issue , 2007, Pages 159-172

  Yumerefendi, Aydan R ^a   Mickle, Benjamin ^a   Cox, Landon P ^a  

^a DUKE UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ACCESS CONTROL; LEGACY SYSTEMS; PRIVACY BY DESIGN; SYSTEMS ANALYSIS;

LEGACY CODE; MISCONFIGURATIONS; PRIVACY MANAGEMENT; PROCESS OUTPUT;

INFORMATION MANAGEMENT;

EID: 84991934426     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (32)

1. P. A. Alsberg and J. D. Day. A Principle for Resilient Sharing of Distributed Resources. In Proceedings of the Second International Conference on Software Engineering (ICSE), October 1976.
2. T. C. Bressoud and F. B. Schneider. Hypervisor-Based Fault-Tolerance. ACM Transactions on Computer Systems (TOCS), February 1996.
3. M. Casado, T. Garfinkel, A. Akella, M. J. Freedman, D. Boneh, N. McKeown, and S. Shenker. SANE: A Protection Architecture for Enterprise Networks. In Proceedings of the 15th USENIX Security Symposium, July 2006.
4. F. Chang and G. A. Gibson. Automatic I/O Hint Generation Through Speculative Execution. In Proceedings of the Third Symposium on Operating Systems Design and Implementation (OSDI), Feburary 1999.
5. W. Cheng, Q. Zhao, B. Yu, and S. Hiroshige. TaintTrace: Efficient Flow Tracing with Dynamic Binary Rewriting. In Proceedings of the 11th IEEE International Symposium on Computers and Communications (ISCC), June 2006.
6. J. Chow, B. Pfaff, T. Garfinkel, K. Christopher, and M. Rosenblum. Understanding Data Lifetime via Whole System Simulation. In Proceedings of the 13th USENIX Security Symposium, August 2004.
7. M. Costa, J. Crowcroft, M. Castro, A. Rowstron, L. Zhou, L. Zhang, and P. Barham. Vigilante: End-to-End Containment of Internet Worms. In Proceedings of the 20th ACM Symposium on Operating Systems Principles (SOSP), October 2005.
8. J. R. Crandall and F. T. Chong. Minos: Control Data Attack Prevention Orthogonal to Memory Model. In Proceedings of the 37th Annual IEEE/ACM International Symposium on Microarchitecture (Micro), December 2004.
9. T. Dierks. The TLS protocol. Internet RFC 2246, January 1999.
10. P. Efstathopoulos, M. Krohn, S. VanDeBogart, C. Frey, D. Ziegler, E. Kohler, D. Maziéres, F. Kaashoek, and R. Morris. Labels and Event Processes in the Asbestos Operating System. In Proceedings of the Twentieth ACM Symposium on Operating Systems Principles, October 2005.
11. J. T. Giffin, S. Jha, and B. P. Miller. Efficient Context-sensitive Intrusion Detection. In Proceedings of the Network and Distributed System Security Symposium (NDSS), February 2004.
12. N. S. Good and A. Krekelberg. Usability and Privacy: a Study of Kazaa P2P File-sharing. In Proceedings of the Conference On Human Factors in Computing Systems (HCI), April 2003.
13. A. Ho, M. Fetterman, C. Clark, A. Warfield, and S. Hand. Practical Taint-based Protection using Demand Emulation. In Proceedings of the First EuroSys Conference, April 2006.
14. L. C. Lam and T. Chiueh. A General Dynamic Information Flow Tracking Framework for Security Applications. In Proceedings of the 22nd Annual Computer Security Applications Conference, December 2006.
15. J. Leyden. ChoicePoint Fined $15m Over Data Security Breach. The Register, January 27, 2006.
16. J. Leyden. HK Police Complaints Data Leak Puts City on Edge. The Register, March 28, 2006.
17. A. McCue. CIO Jury: IT Bosses Ban Google Desktop Over Security Fears. silicon.com, March 2, 2006.
18. B. P. Miller, L. Fredriksen, and B. So. An Empirical Study of the Rreliability of UNIX Utilities. Communications of the ACM, 33(12), 1990.
19. A. C. Myers. JFlow: Practical Mostly-static Information Flow Control. In Proceedings of the 26th ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages (POPL), 1999.
20. J. Newsome and D. Song. Dynamic Taint Analysis for Automatic Detection, Analysis, and Signature Generation of Exploits on Commodity Software. In Proceedings of the Network and Distributed System Security Symposium (NDSS), February 2005.
21. E. B. Nightingale, P. M. Chen, and J. Flinn. Speculative Execution in a Distributed File System. In Proceedings of the 20th ACM Symposium on Operating Systems Principles (SOSP), October 2005.
22. A. Press. Miami University Warns Students of Privacy Breach. Akron Beacon Journal, September 16, 2005.
23. M. Rinard, C. Cadar, D. Dumitran, D. M. Roy, T. Leu, and W. S. Beebee. Enhancing Server Availability and Security Through Failure-Oblivious Computing. In Proceedings of the 6th Symposium on Operating Systems Design and Implementation (OSDI), December 2004.
24. A. Sabelfeld and A. C. Myers. Language-based Information-flow Security. Selected Areas in Communications, IEEE Journal on, 21(1), January 2003.
25. W. Shi, J. B. Fryman, G. Gu, H. H. S. Lee, Y. Zhang, and J. Yang. InfoShield: A Security Architecture for Protecting Information Usage in Memory. In Proceedings of the 12th International Symposium on High-Performance Computer Architecture (HPCA), February 2006.
26. V. Simonet. Flow Caml in a Nutshell. In Proceedings of the First APPSEM-II Workshop, March 2003.
27. B. Sprunt. Pentium 4 Performance Monitoring Features. IEEE Micro, July-August 2002.
28. G. E. Suh, J. W. Lee, D. Zhang, and S. Devadas. Secure Program Execution via Dynamic Information Flow Tracking. In Proceedings of the 11th International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), October 2004.
29. N. Vachharajani, M. J. Bridges, J. Chang, R. Rangan, G. Ottoni, J. A. Blome, G. A. Reis, M. Vachharajani, and D. I. August. RIFLE: An Architectural Framework for User-Centric Information-Flow Security. In Proceedings of the 37th Annual IEEE/ACM International Symposium on Microarchitecture (Micro), December 2004.
30. C. A. Waldspurger. Memory Resource Management in VMware ESX Server. In Proceedings of the 5th Symposium on Operating Systems Design and Implementation (OSDI), December 2004.
31. A. Yumerefendi, B. Mickle, and L. P. Cox. TightLip: Keeping Applications from Spilling the Beans. Technical Report CS-2006-7, Computer Science Department, Duke University, April 2006.
32. S. Zdancewic, L. Zheng, N. Nystrom, and A. C. Myers. Untrusted Hosts and Confidentiality: Secure Program Partitioning. In Proceedings of the 18th ACM Symposium on Operating Systems Principles (SOSP), Banff, Canada, October 2001.