Publication:

Language-Based Information Erasure

Thumbnail Image

Open/View Files

Language-Based_Information_Erasure.pdf (160.79 KB)

Date

2005

Authors

Published Version

10.1109/csfw.2005.19

Journal Title

Journal ISSN

Volume Title

Publisher

IEEE
The Harvard community has made this article openly available. Please share how this access benefits you.

Research Projects

Organizational Units

Journal Issue

Citation

Chong, Stephen and A.C. Myers. "Language-Based Information Erasure." Proceedings of the 18th IEEE Computer Security Foundations Workshop (CSFW), 2005.

Research Data

Abstract

Real computing systems sometimes need to forget sensi- tive information. This paper explores the specification and semantics of information erasure policies, which impose a strong, end-to-end requirement that information be either erased or made less accessible. Simple lattice-based infor- mation flow policies, corresponding to a noninterference re- quirement, are augmented with the ability to express explicit erasure and declassification policies. Examples are given of applying this expressive policy language to real systems. The paper gives tools for reasoning about policy enforce- ment either statically or dynamically. Further, the signifi- cance of these policies to security is formally explained in terms of trace-based semantic security properties: general- izations of noninterference that accommodate erasure and declassification.

Description

Other Available Sources

Keywords

Terms of Use

This article is made available under the terms and conditions applicable to Other Posted Material (LAA), as set forth at Terms of Service

URI

https://nrs.harvard.edu/URN-3:HUL.INSTREPOS:37374147

Collections

FAS Scholarly Articles

Endorsement

Review

Supplemented By

Referenced By

Related Stories