Publication View

Abstract Declassification with Cryptographic Functions in a Security-Typed Language (2008)

Abstract

Security-typed languages are powerful tools for provably enforcing noninterference. Real computing systems, however, often intentionally violate noninterference by deliberately releasing (or declassifying) sensitive information. These systems frequently trust cryptographic functions to achieve declassification while still maintaining confidentiality. We introduce the notion of trusted functions that implicitly act as declassifiers within a security-typed language. Proofs of the new language’s soundness and its enforcement of a weakened form of noninterference are given. Additionally, we implement trusted functions used for declassification in the Jif language. This represents a step forward in making security-typed languages more practical for use in real systems. 1

Publication details

Download	http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.90.2866
Source	http://nsrc.cse.psu.edu/tech_report/NAS-TR-0004-2005.pdf
Contributors	CiteSeerX
Repository	CiteSeerX - Scientific Literature Digital Library and Search Engine (United States)
Type	text
Language	English
Relation	10.1.1.99.2838, 10.1.1.1.5724, 10.1.1.10.3979, 10.1.1.40.4383, 10.1.1.2.1684, 10.1.1.18.7463, 10.1.1.101.441, 10.1.1.126.2197, 10.1.1.14.1928, 10.1.1.15.3293, 10.1.1.130.1712, 10.1.1.12.7352, 10.1.1.36.591, 10.1.1.12.2615, 10.1.1.74.9706, 10.1.1.16.1444, 10.1.1.44.1192, 10.1.1.18.1988, 10.1.1.113.425, 10.1.1.11.1670, 10.1.1.20.7742, 10.1.1.14.8091, 10.1.1.128.6747, 10.1.1.5.9675, 10.1.1.74.7125, 10.1.1.19.5864