Title :
Combining robust declassification and intransitive noninterference
Author :
Jiang, Li ; Ping, Lingdi ; Pan, Xuezeng
Author_Institution :
Zhejiang Univ., Zhejiang
Abstract :
Language-based information flow security properties such as noninterference ensure that confidential data does not affect the publicly visible behavior. But real computing systems sometimes need to dynamically release certain amount of sensitive information. Noninterference is too restrictive to permit such leakage. This paper presents a new security policy of information flow which combines robust declassification and intransitive noninterference according to who can release information and where in the system information is released. Moreover, we introduce an endorsement mechanism that takes the form of a local integrity endorsing policy declaration. Such policy is connected to a semantic security condition which addresses when endorsing is allowed. Thus the integrity of data can be upgraded according to its local endorsing policy. Because robust declassification requires that the decision to perform information release have high integrity, we can grant un- trusted code a limited ability to dynamically affect information release by upgrading its integrity.
Keywords :
data integrity; security of data; data integrity; endorsement mechanism; intransitive noninterference; language-based information flow; real computing systems; robust declassification; security policy; semantic security; untrusted code; Computer science; Computer security; Data flow computing; Data security; Databases; Educational institutions; Information security; Programming profession; Robust control; Robustness;
Conference_Titel :
Computer and Computational Sciences, 2007. IMSCCS 2007. Second International Multi-Symposiums on
Conference_Location :
Iowa City, IA
Print_ISBN :
978-0-7695-3039-0
DOI :
10.1109/IMSCCS.2007.54
