dc.contributor.author | Moore, Scott David | |
dc.contributor.author | Chong, Stephen N | |
dc.date.accessioned | 2012-02-22T20:42:01Z | |
dc.date.issued | 2011 | |
dc.identifier.citation | Moore, Scott and Stephen Chong. Static analysis for efficient hybrid information-flow control. Proceedings of the 24th IEEE Computer Security Foundations Symposium (CSF): June 27-29, 2011, Cernay-la-Ville, France. | en_US |
dc.identifier.isbn | 978-0-7695-4365-9 | en_US |
dc.identifier.uri | http://nrs.harvard.edu/urn-3:HUL.InstRepos:8207504 | |
dc.description.abstract | Hybrid information-flow monitors use a combination of static analysis and dynamic mechanisms to provide precise strong information security guarantees. However, unlike purely static mechanisms for information security, hybrid information-flow monitors incur run-time overhead. We show how static analyses can be used to make hybrid information- flow monitors more efficient, in two ways. First, a simple static analysis can determine when it is sound for a monitor to stop tracking the security level of certain variables. This potentially reduces run-time overhead of the monitor, particularly in applications where sensitive (i.e., confidential or untrusted) data is infrequently introduced to the system. Second, we derive sufficient conditions for soundly incorporating a wide range of memory abstractions into information- flow monitors. This allows the selection of a memory abstraction that gives an appropriate tradeoff between efficiency and precision. It also facilitates the development of innovative and sound memory abstractions that use run-time security information maintained by the monitor. We present and prove our results by extending the information-flow monitor of Russo and Sabelfeld (2010). These results bring us closer to efficient, sound, and precise enforcement of information security. | en_US |
dc.description.sponsorship | Engineering and Applied Sciences | en_US |
dc.language.iso | en_US | en_US |
dc.publisher | IEEE Computer Society | en_US |
dc.relation.isversionof | http://www.computer.org/portal/web/csdl/doi/10.1109/CSF.2011.17 | en_US |
dc.relation.hasversion | http://people.seas.harvard.edu/~chong/pubs/csf11_hybrid_monitors.pdf | en_US |
dash.license | OAP | |
dc.subject | information-flow control | en_US |
dc.subject | hybrid information-flow monitors | en_US |
dc.subject | dynamic information-flow monitors | en_US |
dc.title | Static Analysis for Efficient Hybrid Information-Flow Control | en_US |
dc.type | Conference Paper | en_US |
dc.description.version | Accepted Manuscript | en_US |
dc.relation.journal | Proceedings of the 24th IEEE Computer Security Foundations Symposium | en_US |
dash.depositing.author | Chong, Stephen N | |
dc.date.available | 2012-02-22T20:42:01Z | |
dc.identifier.doi | 10.1109/CSF.2011.17 | * |
dash.contributor.affiliated | Moore, Scott David | |
dash.contributor.affiliated | Chong, Stephen | |