Sciweavers

Share
CSFW
2004
IEEE

Lenient Array Operations for Practical Secure Information Flow

9 years 7 months ago
Lenient Array Operations for Practical Secure Information Flow
Our goal in this paper is to make secure information flow typing more practical. We propose simple and permissive typing rules for array operations in a simple sequential imperative language. Arrays are given types of the form 1 arr 2, where 1 is the security class of the array's contents and 2 is the security class of the array's length. To keep the typing rules permissive, we propose a novel, lenient semantics for out-of-bounds array indices. We show that our type system ensures a noninterference property, and we present an example that suggests that it will not be too difficult in practice to write programs that satisfy the typing rules.
Zhenyue Deng, Geoffrey Smith
Added 20 Aug 2010
Updated 20 Aug 2010
Type Conference
Year 2004
Where CSFW
Authors Zhenyue Deng, Geoffrey Smith
Comments (0)
books