On-the-fly inlining of dynamic security monitors
Paper in proceeding, 2010

Language-based information-flow security considers programs that manipulate pieces of data at different sensitivity levels. Securing information flow in such programs remains an open challenge. Recently, considerable progress has been made on understanding dynamic monitoring for secure information flow. This paper presents a framework for inlining dynamic information-flow monitors. A novel feature of our framework is the ability to perform inlining on the fly. We consider a source language that includes dynamic code evaluation of strings whose content might not be known until runtime. To secure this construct, our inlining is done on the fly, at the string evaluation time, and, just like conventional offline inlining, requires no modification of the hosting runtime environment. We present a formalization for a simple language to show that the inlined code is secure: it satisfies a noninterference property. We also discuss practical considerations and preliminary experimental results.

Author

Jonas Magazinius

Chalmers, Computer Science and Engineering (Chalmers), Software Engineering and Technology (Chalmers)

Alejandro Russo

Chalmers, Computer Science and Engineering (Chalmers), Software Engineering and Technology (Chalmers)

Andrei Sabelfeld

Chalmers, Computer Science and Engineering (Chalmers), Software Engineering and Technology (Chalmers)

IFIP Advances in Information and Communication Technology

1868-4238 (ISSN) 1868-422X (eISSN)

Vol. 330 173-186
978-364215256-6 (ISBN)

Subject Categories

Software Engineering

DOI

10.1007/978-3-642-15257-3_16

ISBN

978-364215256-6

More information

Created

10/7/2017