Title :
An iterative method for secure inter-procedural information flow control
Author_Institution :
Dept. of Comput. & Inf. Sci., Kansas State Univ., Manhattan, KS, USA
Abstract :
An information flow control policy specifies the manner in which classified information flows from one object to another. A link-time algorithm is presented for an information flow certification mechanism designed for modular programming systems. The mechanism combines a compile-time algorithm developed for object-oriented systems with the link-time algorithm described. The compile-time algorithm partially verifies the security of each procedure independently and generates equations which express potential flows caused by parameter passing. The link-time algorithm completes the certification of the entire program by verifying the interprocedural information flows. It analyzes the equations for all procedures in the program and calculates the least fixed point by using a standard iterative method
Keywords :
iterative methods; object-oriented programming; program compilers; program verification; security of data; certification; classified information; compile-time algorithm; information flow certification mechanism; information flow control policy; interprocedural information flows; iterative method; least fixed point; link-time algorithm; modular programming systems; object-oriented systems; parameter passing; potential flows; secure inter-procedural information flow control; standard iterative method; Algorithm design and analysis; Certification; Data security; Data structures; Equations; Information security; Iterative algorithms; Iterative methods; Lattices; Runtime;
Conference_Titel :
Computer Software and Applications Conference, 1989. COMPSAC 89., Proceedings of the 13th Annual International
Conference_Location :
Orlando, FL
Print_ISBN :
0-8186-1964-3
DOI :
10.1109/CMPSAC.1989.65097
