Handling Encryption in an Analysis for Secure Information Flow

View Related Documents

Book Chapter
Cryptographically-Masked Flows
Aslan Askarov, Daniel Hedin and Andrei Sabelfeld
Lecture Notes in Computer Science, 2006, Volume 4134, Static Analysis, Pages 353-369
- Download PDF (400.1 KB)
Book Chapter
Adversaries and Information Leaks (Tutorial)
Geoffrey Smith
Lecture Notes in Computer Science, 2008, Volume 4912, Trustworthy Global Computing, Pages 383-400
- Download PDF (245.2 KB)
Book Chapter
Termination-Insensitive Noninterference Leaks More Than Just a Bit
Aslan Askarov, Sebastian Hunt, Andrei Sabelfeld and David Sands
Lecture Notes in Computer Science, 2008, Volume 5283, Computer Security - ESORICS 2008, Pages 333-348
- Download PDF (591.7 KB)
Book Chapter
Flow Locks: Towards a Core Calculus for Dynamic Flow Policies
Niklas Broberg and David Sands
Lecture Notes in Computer Science, 2006, Volume 3924, Programming Languages and Systems, Pages 180-196
- Download PDF (609.8 KB)
Book Chapter
The Impact of Synchronisation on Secure Information Flow in Concurrent Programs
Andrei Sabelfeld
Lecture Notes in Computer Science, 2001, Volume 2244, Perspectives of System Informatics, Pages 225-239
- Download PDF (212.0 KB)
Book Chapter
Dynamic Security Labels and Noninterference (Extended Abstract)
Lantian Zheng and Andrew C. Myers
IFIP International Federation for Information Processing, 2005, Volume 173, Formal Aspects in Security and Trust, Pages 27-40
- Download PDF (747.2 KB)
Journal Article
Dynamic security labels and static information flow control
Lantian Zheng and Andrew C. Myers
International Journal of Information Security, 2007, Volume 6, Numbers 2-3, Pages 67-84
- Download PDF (952.3 KB)
Book Chapter
Information Flow Analysis for a Typed Assembly Language with Polymorphic Stacks
Eduardo Bonelli, Adriana Compagnoni and Ricardo Medel
Lecture Notes in Computer Science, 2006, Volume 3956, Construction and Analysis of Safe, Secure, and Interoperable Smart Devices, Pages 37-56
- Download PDF (665.7 KB)
Book Chapter
An Efficient Information Flow Analysis of Recursive Programs Based on a Lattice Model of Security Classes
Shigeta Kuninobu, Yoshiaki Takata, Hiroyuki Seki and Katsuro Inoue
Lecture Notes in Computer Science, 2001, Volume 2229, Information and Communications Security, Pages 292-303
- Download PDF (140.6 KB)
Book Chapter
Secure Information Flow as a Safety Property
Gérard Boudol
Lecture Notes in Computer Science, 2009, Volume 5491, Formal Aspects in Security and Trust, Pages 20-34
- Download PDF (302.6 KB)

Abstract

This paper presents a program analysis for secure information flow. The analysis works on a simple imperative programming language containing a cryptographic primitive—encryption—as a possible operation. The analysis captures the intuitive qualities of the (lack of) information flow from a plaintext to its corresponding ciphertext. The analysis is proved correct with respect to a complexity-theoretical definition of the security of information flow. In contrast to the previous results, the analysis does not put any restrictions on the structure of the program, especially on the ways of how the program uses the encryption keys.

Supported by Estonian Science Foundation grant #5279. Most of this work was done while the author was at the University of Saarland, Germany.

Fulltext Preview

Image of the first page of the fulltext document

Frequently asked questions General info on journals and books Send us your feedback Impressum Contact us

SpringerLink

Handling Encryption in an Analysis for Secure Information Flow

View Related Documents

Abstract

Fulltext Preview