Required Information Release

DSpace/Manakin Repository

Required Information Release

Citable link to this page


Title: Required Information Release
Author: Chong, Stephen N
Citation: Chong, Stephen. 2010. Required Information Release. Harvard Computer Science Group Technical Report TR-04-10.
Full Text & Related Files:
Abstract: Many computer systems have a functional requirement to release information. Such requirements are an important part of a system’s information security requirements. Current information-flow control techniques are able to reason about permitted information flows, but not required information flows. In this paper, we introduce and explore the specification and enforcement of required information release in a language-based setting. We define semantic security conditions that express both what information a program is required to release, and how an observer is able to learn this information. We also consider the relationship between permitted and required information release, and define bounded release, which provides upper- and lowerbounds on the information a program releases. We show that both required information release and bounded release can be enforced using a security-type system.
Published Version: 10.1109/CSF.2010.22
Terms of Use: This article is made available under the terms and conditions applicable to Other Posted Material, as set forth at
Citable link to this page:
Downloads of this work:

Show full Dublin Core record

This item appears in the following Collection(s)


Search DASH

Advanced Search