Extracting Conditional Confidentiality Policies

Programs should keep sensitive information, such as medical records, confidential. We present a static analysis that extracts from a program's source code a sound approximation of the most restrictive conditional confidentiality policy that the program obeys. To formalize conditional confidenti...

Full description

Saved in:
Bibliographic Details
Main Authors: Tschantz, M.C., Wing, J.M.
Format: Conference Proceeding
Language:English
Subjects:
Authentication
Authorization
Computer science
confidentiality
Data mining
Information analysis
noninterference
Performance analysis
Protection
Runtime
Software engineering
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Programs should keep sensitive information, such as medical records, confidential. We present a static analysis that extracts from a program's source code a sound approximation of the most restrictive conditional confidentiality policy that the program obeys. To formalize conditional confidentiality policies, we present a modified definition of noninterference that accommodates runtime information. We implement our analysis and experiment with the resulting tool on C programs. While we focus on using our analysis for policy extraction, the process can more generally be used for information flow analysis. Unlike traditional information flow analysis that simply states what flows are possible in a program, our tool also states what conditions must be satisfied by an execution for each flow to be enabled. Furthermore, our analysis is the first to handle interactive I/O while being compositional and flow sensitive.
ISSN:1551-0255
2160-7656
DOI:10.1109/SEFM.2008.46