• DocumentCode
    3382690
  • Title

    On declassification and the non-disclosure policy

  • Author

    Matos, Ana Almeida ; Boudol, Gérard

  • Author_Institution
    INRIA, France
  • fYear
    2005
  • fDate
    20-22 June 2005
  • Firstpage
    226
  • Lastpage
    240
  • Abstract
    We address the issue of declassification in a language-based security approach. We introduce, in a Core ML-like language with concurrent threads, a declassification mechanism that takes the form of a local flow policy declaration. The computation in the scope of such a declaration is allowed to implement information flow according to the local policy. This dynamic view of information flow policies is supported by a concrete presentation of the security lattice, where the confidentiality levels are sets of principals, similar to access control lists. To take into account declassification, and more generally dynamic flow policies, we introduce a generalization of non-interference, that we call the non-disclosure policy, and we design a type and effect system for our language that enforces this policy.
  • Keywords
    security of data; Core ML-like language; access control; confidentiality levels; declassification policy; flow policy declaration; language-based security approach; nondisclosure policy; security lattice; Access control; Concrete; Information analysis; Information security; Lattices; Law; Protection; Runtime; Scholarships; Yarn;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Foundations, 2005. CSFW-18 2005. 18th IEEE Workshop
  • ISSN
    1063-6900
  • Print_ISBN
    0-7695-2340-4
  • Type

    conf

  • DOI
    10.1109/CSFW.2005.21
  • Filename
    1443209
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3382690