On transparent value-sensitive run-time monitoring for information flow policies. (December 2018)

Record Type:
Journal Article
Title:
On transparent value-sensitive run-time monitoring for information flow policies. (December 2018)
Main Title:
On transparent value-sensitive run-time monitoring for information flow policies
Authors:
Imanimehr, Fatemeh
Fallah, Mehran S.
Abstract:
Abstract: Run-time monitoring proves to be a successful mechanism for enforcing information flow policies. The main challenge, however, is to achieve transparency which generally demands that monitors should make as minimal changes to program executions as possible. We investigate the level of transparency a monitor can attain when it uses static and dynamic information about possible values of program variables. To study such value-sensitive monitors, we consider two paradigms of corrective enforcement that indeed formulate the ultimate transparency. Then, we propose a number of purely dynamic and hybrid value-sensitive monitors for some known noninterference policies. Although value sensitivity leads to more transparent monitors, it can hardly provide the ultimate transparency. This motivates us to give partial orders reflecting the level of transparency a monitor may achieve and to locate monitors on the proposed partial orders. It is shown that hybrid value-sensitive monitors can correctively enforce so-called termination-insensitive noninterference only if they can compute the set of possible values of certain variables. We also prove that such an ideal monitor is the only hybrid monitor, in the large class of monitors identified in this paper, that can be more transparent than purely dynamic monitors.
Is Part Of:
Computer languages, systems & structures. Volume 54(2018)
Journal:
Computer languages, systems & structures
Issue:
Volume 54(2018)
Issue Display:
Volume 54, Issue 2018 (2018)
Year:
2018
Volume:
54
Issue:
2018
Issue Sort Value:
2018-0054-2018-0000
Page Start:
273
Page End:
296
Publication Date:
2018-12
Subjects:
Corrective enforcement -- Information flow policies -- Run-time monitoring -- Transparency -- Value sensitivity
Programming languages (Electronic computers) -- Periodicals
Computer networks -- Periodicals
Computer architecture -- Periodicals
Computer systems -- Periodicals
Langage de programmation
Réseau d'ordinateurs
Architecture d'ordinateur
Périodique électronique (Descripteur de forme)
Ressource Internet (Descripteur de forme)
005.13
Journal URLs:
http://www.sciencedirect.com/science/journal/14778424/40
http://www.elsevier.com/journals
DOI:
10.1016/j.cl.2018.07.003
Languages:
English
ISSNs:
1477-8424
Deposit Type:
Legaldeposit
View Content:
Available online (eLD content is only available in our Reading Rooms)
Physical Locations:
British Library DSC - 3394.071000
British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store
Ingest File:
8865.xml