Publication: Language-Based Information Erasure
No Thumbnail Available
Open/View Files
Date
2005
Authors
Published Version
Journal Title
Journal ISSN
Volume Title
Publisher
IEEE
The Harvard community has made this article openly available. Please share how this access benefits you.
Citation
Chong, Stephen and A.C. Myers. "Language-Based Information Erasure." Proceedings of the 18th IEEE Computer Security Foundations Workshop (CSFW), 2005.
Research Data
Abstract
Real computing systems sometimes need to forget sensi- tive information. This paper explores the specification and semantics of information erasure policies, which impose a strong, end-to-end requirement that information be either erased or made less accessible. Simple lattice-based infor- mation flow policies, corresponding to a noninterference re- quirement, are augmented with the ability to express explicit erasure and declassification policies. Examples are given of applying this expressive policy language to real systems. The paper gives tools for reasoning about policy enforce- ment either statically or dynamically. Further, the signifi- cance of these policies to security is formally explained in terms of trace-based semantic security properties: general- izations of noninterference that accommodate erasure and declassification.
Description
Other Available Sources
Keywords
Terms of Use
This article is made available under the terms and conditions applicable to Other Posted Material (LAA), as set forth at Terms of Service