Language Based Information Routing Security: Policy Enforcement

Languages-based security promises to be a powerful tool with which provably secure routing applications may bedeveloped. Programs written in these languages enforce a strong policy of non-interference, which ensures that high-securitydata will not be observable on low-security channels. The information routing security proposed aim to fill the gap betweenrepresentation and enforcement by implementing and integrating the divers security services needed by policy. Policy isenforced by the run-time compiler and executions based mechanism to information violating routing policy and regulation ofsecurity services. Checking the routing requirements of explicit route achieves this result for statements involving explicitroute. Unfortunately, such classification is often expressed as an operation within a given program, rather than as part of apolicy, making reasoning about the security implications of a policy more difficult. We formalize our approach for a C++ likelanguage and prove a modified form of our non-interference method. We have implemented our approach as an extension to Cand provide some of our experience using it to build a secure information routing