Information Flow Control-by-Construction for an Object-Oriented Language Using Type Modifiers

Tobias Runge; Alexander Kittelmann; Marco Servetto; Alex Potanin; Ina Schaefer

doi:10.48550/arXiv.2208.02672

Information Flow Control-by-Construction for an Object-Oriented Language Using Type Modifiers

Tobias Runge, Alexander Kittelmann, Marco Servetto, Alex Potanin, Ina Schaefer

School of Computing

Research output: Contribution to journal › Article

Abstract

In security-critical software applications, confidential information must be prevented from leaking to unauthorized sinks. Static analysis techniques are widespread to enforce a secure information flow by checking a program after construction. A drawback of these systems is that incomplete programs during construction cannot be checked properly. The user is not guided to a secure program by most systems. We introduce IFbCOO, an approach that guides users incrementally to a secure implementation by using refinement rules. In each refinement step, confidentiality or integrity (or both) is guaranteed alongside the functional correctness of the program, such that insecure programs are declined by construction. In this work, we formalize IFbCOO and prove soundness of the refinement rules. We implement IFbCOO in the tool CorC and conduct a feasibility study by successfully implementing case studies.

Original language	English
Article number	abs/2208.02672
Number of pages	21
Journal	CoRR
DOIs	https://doi.org/10.48550/arXiv.2208.02672
Publication status	Published - 2022

Access to Document

10.48550/arXiv.2208.02672

https://dblp.org/db/journals/corr/corr2208.html#abs-2208-02672

Cite this

@article{77b4361e8e714ed49709920e4314eeb7,

title = "Information Flow Control-by-Construction for an Object-Oriented Language Using Type Modifiers",

abstract = "In security-critical software applications, confidential information must be prevented from leaking to unauthorized sinks. Static analysis techniques are widespread to enforce a secure information flow by checking a program after construction. A drawback of these systems is that incomplete programs during construction cannot be checked properly. The user is not guided to a secure program by most systems. We introduce IFbCOO, an approach that guides users incrementally to a secure implementation by using refinement rules. In each refinement step, confidentiality or integrity (or both) is guaranteed alongside the functional correctness of the program, such that insecure programs are declined by construction. In this work, we formalize IFbCOO and prove soundness of the refinement rules. We implement IFbCOO in the tool CorC and conduct a feasibility study by successfully implementing case studies.",

author = "Tobias Runge and Alexander Kittelmann and Marco Servetto and Alex Potanin and Ina Schaefer",

note = "DBLP License: DBLP's bibliographic metadata records provided through http://dblp.org/ are distributed under a Creative Commons CC0 1.0 Universal Public Domain Dedication. Although the bibliographic metadata records are provided consistent with CC0 1.0 Dedication, the content described by the metadata records is not. Content may be subject to copyright, rights of privacy, rights of publicity and other restrictions.",

year = "2022",

doi = "10.48550/arXiv.2208.02672",

language = "English",

journal = "CoRR",

publisher = "arXiv",

}

TY - JOUR

T1 - Information Flow Control-by-Construction for an Object-Oriented Language Using Type Modifiers

AU - Runge, Tobias

AU - Kittelmann, Alexander

AU - Servetto, Marco

AU - Potanin, Alex

AU - Schaefer, Ina

N1 - DBLP License: DBLP's bibliographic metadata records provided through http://dblp.org/ are distributed under a Creative Commons CC0 1.0 Universal Public Domain Dedication. Although the bibliographic metadata records are provided consistent with CC0 1.0 Dedication, the content described by the metadata records is not. Content may be subject to copyright, rights of privacy, rights of publicity and other restrictions.

PY - 2022

Y1 - 2022

N2 - In security-critical software applications, confidential information must be prevented from leaking to unauthorized sinks. Static analysis techniques are widespread to enforce a secure information flow by checking a program after construction. A drawback of these systems is that incomplete programs during construction cannot be checked properly. The user is not guided to a secure program by most systems. We introduce IFbCOO, an approach that guides users incrementally to a secure implementation by using refinement rules. In each refinement step, confidentiality or integrity (or both) is guaranteed alongside the functional correctness of the program, such that insecure programs are declined by construction. In this work, we formalize IFbCOO and prove soundness of the refinement rules. We implement IFbCOO in the tool CorC and conduct a feasibility study by successfully implementing case studies.

AB - In security-critical software applications, confidential information must be prevented from leaking to unauthorized sinks. Static analysis techniques are widespread to enforce a secure information flow by checking a program after construction. A drawback of these systems is that incomplete programs during construction cannot be checked properly. The user is not guided to a secure program by most systems. We introduce IFbCOO, an approach that guides users incrementally to a secure implementation by using refinement rules. In each refinement step, confidentiality or integrity (or both) is guaranteed alongside the functional correctness of the program, such that insecure programs are declined by construction. In this work, we formalize IFbCOO and prove soundness of the refinement rules. We implement IFbCOO in the tool CorC and conduct a feasibility study by successfully implementing case studies.

U2 - 10.48550/arXiv.2208.02672

DO - 10.48550/arXiv.2208.02672

M3 - Article

JO - CoRR

JF - CoRR

M1 - abs/2208.02672

ER -

Information Flow Control-by-Construction for an Object-Oriented Language Using Type Modifiers

Abstract

Access to Document

Fingerprint

Cite this