English

Towards a Flow- and Path-Sensitive Information Flow Analysis: Technical Report

Programming Languages 2017-06-22 v2 Cryptography and Security
Authors: Peixuan Li , Danfeng Zhang
View on arXiv PDF

Abstract

This paper investigates a flow- and path-sensitive static information flow analysis. Compared with security type systems with fixed labels, it has been shown that flow-sensitive type systems accept more secure programs. We show that an information flow analysis with fixed labels can be both flow- and path-sensitive. The novel analysis has two major components: 1) a general-purpose program transformation that removes false dataflow dependencies in a program that confuse a fixed-label type system, and 2) a fixed-label type system that allows security types to depend on path conditions. We formally prove that the proposed analysis enforces a rigorous security property: noninterference. Moreover, we show that the analysis is strictly more precise than a classic flow-sensitive type system, and it allows sound control of information flow in the presence of mutable variables without resorting to run-time mechanisms.

Keywords

optical flow program analysis runtime monitoring

Cite

@article{arxiv.1706.01407,
  title  = {Towards a Flow- and Path-Sensitive Information Flow Analysis: Technical Report},
  author = {Peixuan Li and Danfeng Zhang},
  journal= {arXiv preprint arXiv:1706.01407},
  year   = {2017}
}

Related papers

View all related →
Cryptography and Security · Computer Science
Very Static Enforcement of Dynamic Policies
Bart van Delft, Sebastian Hunt, David Sands
2015-01-13
Cryptography and Security · Computer Science
Dynamic Intransitive Noninterference Revisited
Sebastian Eggert, Ron van der Meyden
2016-01-21
Cryptography and Security · Computer Science
Output-sensitive Information flow analysis
Cristian Ene, Laurent Mounier, Marie-Laure Potet
2023-06-22
Programming Languages · Computer Science
First-order Gradual Information Flow Types with Gradual Guarantees
Abhishek Bichhawat, McKenna McCall, Limin Jia
2021-02-10
Cryptography and Security · Computer Science
On Dynamic Flow-Sensitive Floating-Label Systems
Pablo Buiras, Deian Stefan, Alejandro Russo
2015-07-23
Software Engineering · Computer Science
Beware of the Unexpected: Bimodal Taint Analysis
Yiu Wai Chow, Max Schäfer, Michael Pradel
2023-01-26
Programming Languages · Computer Science
Information Flow Analysis for a Dynamically Typed Functional Language with Staged Metaprogramming
Martin Lester, Luke Ong, Max Schaefer
2013-02-14
Chaotic Dynamics · Physics
Information flow within stochastic dynamical systems
X. San Liang
2007-10-05
Programming Languages · Computer Science
Static Information Flow Control Made Simpler
Hemant Gouni, Jonathan Aldrich
2022-10-25
Programming Languages · Computer Science
A Verified Information-Flow Architecture
Arthur Azevedo de Amorim, Nathan Collins, André DeHon, Delphine Demange +5
2016-03-08
Logic in Computer Science · Computer Science
Dependency-Based Information Flow Analysis with Declassification in a Program Logic
Bart van Delft, Richard Bubel
2015-09-15
Cryptography and Security · Computer Science
A Methodology for Information Flow Experiments
Michael Carl Tschantz, Amit Datta, Anupam Datta, Jeannette M. Wing
2014-05-13
Programming Languages · Computer Science
Pifthon: A Compile-Time Information Flow Analyzer For An Imperative Language
Sandip Ghosal, R. K. Shyamasundar
2021-03-11
Software Engineering · Computer Science
Tool-Supported Architecture-Based Data Flow Analysis for Confidentiality
Felix Schwickerath, Nicolas Boltz, Sebastian Hahner, Maximilian Walter +2
2023-08-04
Programming Languages · Computer Science
Hybrid Information Flow Analysis for Programs with Arrays
Gergö Barany
2016-07-11
Programming Languages · Computer Science
Information flow in a distributed security setting
Ana Almeida Matos, Jan Cederquist
2019-01-09
Programming Languages · Computer Science
A Relational Static Semantics for Call Graph Construction
Xilong Zhuo, Chenyi Zhang
2019-07-16
Cryptography and Security · Computer Science
Calculational Design of Information Flow Monitors (extended version)
Mounir Assaf, David A. Naumann
2016-05-11
Software Engineering · Computer Science
Continuous Flow Analysis to Detect Security Problems
Steven P. Reiss
2019-10-01
Programming Languages · Computer Science
Flow-Sensitive Composition of Thread-Modular Abstract Interpretation
Markus Kusano, Chao Wang
2017-10-02
Cryptography and Security · Computer Science
An Empirical Study of Information Flows in Real-World JavaScript
Cristian-Alexandru Staicu, Daniel Schoepe, Musard Balliu, Michael Pradel +1
2019-06-28
Cryptography and Security · Computer Science
QFlow: Quantitative Information Flow for Security-Aware Hardware Design in Verilog
Lennart M. Reimann, Luca Hanel, Dominik Sisejkovic, Farhad Merchant +1
2021-12-23
Cryptography and Security · Computer Science
Information Security as Strategic (In)effectivity
Wojciech Jamroga, Masoud Tabatabaei
2016-08-09
Programming Languages · Computer Science
Reconciling progress-insensitive noninterference and declassification
Johan Bay, Aslan Askarov
2020-05-12
Information Theory · Computer Science
Information Flow in Computational Systems
Praveen Venkatesh, Sanghamitra Dutta, Pulkit Grover
2023-07-21