Declassification with explicit reference points

Lux, Alexander; Mantel, Heiko

Declassification with explicit reference points

Publikationstyp

Conference Paper

Date Issued

2009-09

Sprache

English

Author(s)

Lux, Alexander

Mantel, Heiko

TORE-URI

http://hdl.handle.net/11420/13913

First published in

Lecture notes in computer science

Number in series

5789 LNCS

Start Page

69

End Page

85

Citation

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) 5789 LNCS (): 69-85 (2009-11-02)

Contribution to Conference

14th European Symposium on Research in Computer Security, ESORICS 2009

Publisher DOI

10.1007/978-3-642-04444-1_5

Scopus ID

2-s2.0-70350383757

Publisher

Springer

Noninterference requires that public outputs of a program must be completely independent from secrets. While this ensures that secrets cannot be leaked, it is too restrictive for many applications. For instance, the output of a knowledge-based authentication mechanism needs to reveal whether an input matches the secret password. The research problem is to allow such exceptions without giving up too much. Though a number of solutions has been developed, the problem is not yet satisfactorily solved. In this article, we propose a framework to control what information is declassified. Our contributions include a policy language, a semantic characterization of information flow security, and a sound security type system. The main technical novelty is the explicit treatment of so called reference points, which allows us to offer substantially more flexible control of what is released than in existing approaches.

DDC Class

004: Informatik

Options

Declassification with explicit reference points