Inference of Expressive Declassification Policies
Vaughan, Jeffrey A.
MetadataShow full item record
CitationVaughan, Jeffrey A. and Stephen Chong. 2011. Inference of expressive declassification policies. In Proceedings of the 2011 IEEE Symposium on Security and Privacy (SP): May 22-25, 2011, Berkeley, CA.
AbstractWe explore the inference of expressive human-readable declassification policies as a step towards providing practical tools and techniques for strong language-based information security. Security-type systems can enforce expressive information-security policies, but can require enormous programmer effort before any security benefit is realized. To reduce the burden on the programmer, we focus on inference of expressive yet intuitive information-security policies from programs with few programmer annotations. We define a novel security policy language that can express what information a program may release, under what conditions (or, when) such release may occur, and which procedures are involved with the release (or, where in the code the release occur). We describe a dataflow analysis for precisely inferring these policies, and build a tool that instantiates this analysis for the Java programming language. We validate the policies, analysis, and our implementation by applying the tool to a collection of simple Java programs.
Citable link to this pagehttp://nrs.harvard.edu/urn-3:HUL.InstRepos:8207505
- FAS Scholarly Articles 
Showing items related by title, author, creator and subject.
Kramer, Daniel Bruce; Baker, Matthew Charles; Ransford, Benjamin; Molina-Markham, Andres; Stewart, Quinn; Fu, Kevin; Reynolds, Matthew R. (Public Library of Science, 2012)Background: Medical devices increasingly depend on computing functions such as wireless communication and Internet connectivity for software-based control of therapies and network-based transmission of patients’ stored ...
Liebman, Jeffrey B.; Luttmer, Erzo F.P.; Seif, David G. (John F. Kennedy School of Government, Harvard University, 2009)A key question for Social Security reform is whether workers currently perceive the link on the margin between the Social Security taxes they pay and the Social Security benefits they will receive. We estimate the effects ...
Enhancing Food Security in an Era of Global Climate Change: An Executive Session on Grand Challenges of the Sustainability Transition Clark, William; Kristjanson, Patti; Campbell, Bruce; Juma, Calestous; Holbrook, Noel Michele; Nelson, Gerald; Dickson, Nancy M. (John F. Kennedy School of Government, Harvard University., 2010)The goal of the workshop was to build a more strategic and integrated perspective on the threats and opportunities latent in the food / climate issue, and to discuss the hard challenges of moving forward toward common goals ...