An Analysis of Universal Information Flow Based on Self-Composition

An Analysis of Universal Information Flow Based on Self-Composition

We introduce a novel way of proving information flow properties of a program based on its self-composition. Similarly to the universal information flow type system of Hunt and Sands, our analysis explicitly computes the dependencies of variables in the final state on variables in the initial state....

Full description

Saved in:
Bibliographic Details
Published in:2015 IEEE 28th Computer Security Foundations Symposium pp. 380 - 393
Main Authors: Muller, Christian, Kovacs, Mate, Seidl, Helmut
Format: Conference Proceeding
Language:English
Published: IEEE 04-09-2015
Subjects:
Algorithm design and analysis
Calculus
hypersafety property
information flow control
interprocedural analysis
Lattices
noninterference
Polynomials
Security
Semantics
Syntactics
weakest precondition
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:We introduce a novel way of proving information flow properties of a program based on its self-composition. Similarly to the universal information flow type system of Hunt and Sands, our analysis explicitly computes the dependencies of variables in the final state on variables in the initial state. Accordingly, the analysis result is independent of specific information flow lattices, and allows to derive information flow w.r.t. any of these. While our analysis runs in polynomial time, we prove that it never loses precision against the type system of Hunt and Sands, and may gain extra precision by taking similarities between different branches of conditionals into account. Also, we indicate how it can be smoothly generalized to an interprocedural analysis.
ISSN:1063-6900
DOI:10.1109/CSF.2015.33