Volume 7 Number 11 (Nov. 2012)
Home > Archive > 2012 > Volume 7 Number 11 (Nov. 2012) >
JSW 2012 Vol.7(11): 2478-2487 ISSN: 1796-217X
doi: 10.4304//jsw.7.11.2478-2487

Flow-Sensitive Automaton-Based Monitoring of a Declassification Policy

Hao Zhu1,2, Yi Zhuang2
1School of Computer Science and Technology, Nanjing University of Aeronautics and Astronautics, Nanjing, China
2School of Computer Science and Technology, Nantong University, Nantong, China

Abstract—Declassification policies aim to guarantee trusted release of confidential information. The semantic security conditions of declassification policies focus on different dimensions. In order to prevent the special attacks aiming to compromise the mechanisms of declassification, it is important for a declassification policy to combine different dimensions. Moreover, current body of work on the enforcement of the declassification policy focuses on static and flow-insensitive information-flow analysis, which is over-restrictive and imprecise. Dynamic and flow-sensitive information flow analysis techniques offer distinct advantages in permissiveness and precision. As a step in these directions, this paper first presents a declassification policy combining two dimensions, which control the amount and the location of confidential information release respectively, based on the security-typed language proposed. Then we presents an automaton-based monitoring mechanisms of the declassification policy. Abstractions of events occurring during the execution of a program are sent to the automaton as inputs, and the automaton uses these inputs to track the information flows and controls the execution of the program by forbidding or editing insecure commands that violate the declassification policy. Additionally, we prove the monitoring mechanism proposed is sound.

Index Terms—automaton, confidentiality, declassification policy, information flow security, noninterference

[PDF]

Cite: Hao Zhu, Yi Zhuang, "Flow-Sensitive Automaton-Based Monitoring of a Declassification Policy," Journal of Software vol. 7, no. 11, pp. 2478-2487, 2012.

General Information

ISSN: 1796-217X (Online)
Frequency: Monthly
Editor-in-Chief: Prof. Antanas Verikas
Executive Editor: Ms. Yoyo Y. Zhou
Abstracting/ Indexing: DBLP, EBSCO, ProQuest, INSPEC, ULRICH's Periodicals Directory, WorldCat, etc
E-mail: jsw@iap.org
  • Aug 21, 2019 News!

    Papers published in JSW Vol 14, No 1- Vol 14 No 8 have been indexed by DBLP     [Click]

  • Jun 25, 2019 News!

    Vol.13, No.9 has been indexed by EI (Inspec).   [Click]

  • Aug 01, 2018 News!

    [CFP] 2020 the annual meeting of JSW Editorial Board, ICCSM 2020, will be held in Rome, Italy, July 17-19, 2020   [Click]

  • Jul 10, 2019 News!

    Vol 14, No.8 has been published with online version 4 original aritcles from 2 countries are published in this issue.    [Click]

  • Sep 12, 2019 News!

    Vol 14, No 10 has been published with online version 4 original aritcles from 2 countries are published in this issue      [Click]