Abstract
SAFE is a clean-slate design for a highly secure computer system, with pervasive mechanisms for tracking and limiting information flows. At the lowest level, the SAFE hardware supports fine-grained programmable tags, with efficient and flexible propagation and combination of tags as instructions are executed. The operating system virtualizes these generic facilities to present an information-flow abstract machine that allows user programs to label sensitive data with rich confidentiality policies. We present a formal, machine-checked model of the key hardware and software mechanisms used to control information flow in SAFE and an end-to-end proof of noninterference for this model. © 2014 ACM.
Author supplied keywords
Cite
CITATION STYLE
Azevedo De Amorim, A., Collins, N., DeHon, A., Demange, D., Hri̧cu, C., Pichardie, D., … Tolmach, A. (2014). A verified information-flow architecture. In Conference Record of the Annual ACM Symposium on Principles of Programming Languages (pp. 165–178). https://doi.org/10.1145/2535838.2535839
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
