Information flow control for java : a comprehensive approach based on path conditions in dependence Graphs
Abstract:
Information flow control (IFC) is a technique to assert the security of a given program with respect to a given security policy. The classical policy noninterference requires that public output of a program may not be influenced from secret input. This work leverages a technique called program slicing, which is closely connected to IFC and offers many dimensions for improving analysis precision, the most powerful are Path Conditions. Our evaluation shows scalability with a low annotation burden.
| Zugehörige Institution(en) am KIT | Institut für Programmstrukturen und Datenorganisation (IPD) Kompetenzzentrum für angewandte Sicherheitstechnologie (KASTEL) |
| Publikationstyp | Hochschulschrift |
| Publikationsjahr | 2009 |
| Sprache | Englisch |
| Identifikator | ISBN: 978-3-86644-398-3 urn:nbn:de:0072-120494 KITopen-ID: 1000012049 |
| Verlag | Universitätsverlag Karlsruhe |
| Umfang | 221 S. |
| Art der Arbeit | Dissertation |
| Fakultät | Fakultät für Informatik (INFORMATIK) |
| Institut | Institut für Programmstrukturen und Datenorganisation (IPD) |
| Prüfungsdatum | 01.07.2009 |
| Projektinformation | KASTEL I (BMBF, 01BY1172 / 16BY1172) |
| Schlagwörter | program slicing, information flow control, software security, path conditions, program dependence graph |
| Referent/Betreuer | Snelting, G. |