Skip to main content
Conference ProceedingsOPEN ACCESS

Dynamic information flow control architecture for web applications

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2007) 4734 LNCS 267-282
DOI: 10.1007/978-3-540-74835-9_18
14Citations
Citations of this article
28Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

In typical Web applications, the access control at the database management system is not effective due to the dependency on application behavior. That is, once the information is retrieved, a careless application can easily leak the information to undesirable parties. In addition, database accounts are often shared for multiple Web users in order to allow connection pooling. We propose DIFCA-J (Dynamic Information Flow Control Architecture for Java), to keep track of and control fine-grained information propagation through execution of the program. DIFCA-J allows controlling the information flow at run-time, without needing to modify the source code of the target application or the Java VMs. © Springer-Verlag Berlin Heidelberg 2007.

Cite

CITATION STYLE

APA

Yoshihama, S., Yoshizawa, T., Watanabe, Y., Kudoh, M., & Oyanagi, K. (2007). Dynamic information flow control architecture for web applications. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 4734 LNCS, pp. 267–282). https://doi.org/10.1007/978-3-540-74835-9_18

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free