Skip to main content
Conference ProceedingsOPEN ACCESS

A verified information-flow architecture

Conference Record of the Annual ACM Symposium on Principles of Programming Languages (2014) 165-178
DOI: 10.1145/2535838.2535839
21Citations
Citations of this article
34Readers
Mendeley users who have this article in their library.

Abstract

SAFE is a clean-slate design for a highly secure computer system, with pervasive mechanisms for tracking and limiting information flows. At the lowest level, the SAFE hardware supports fine-grained programmable tags, with efficient and flexible propagation and combination of tags as instructions are executed. The operating system virtualizes these generic facilities to present an information-flow abstract machine that allows user programs to label sensitive data with rich confidentiality policies. We present a formal, machine-checked model of the key hardware and software mechanisms used to control information flow in SAFE and an end-to-end proof of noninterference for this model. © 2014 ACM.

Author supplied keywords

References Powered by Scopus

Language-based information-flow security

IEEE Journal on Selected Areas in Communications
1484Citations
N/AReaders
Get full text

SeL4: Formal verification of an OS kernel

SOSP'09 - Proceedings of the 22nd ACM SIGOPS Symposium on Operating Systems Principles
1282Citations
N/AReaders
Get full text

Dytan: A generic dynamic taint analysis framework

2007 ACM International Symposium on Software Testing and Analysis, ISSTA'07
448Citations
N/AReaders
Get full text
View more at Scopus

Cited by Powered by Scopus

Hardware information flow tracking

ACM Computing Surveys
54Citations
N/AReaders
Get full text

Micro-policies: Formally verified, tag-based security monitors

Proceedings - IEEE Symposium on Security and Privacy
36Citations
N/AReaders
Get full text

Rigorous engineering for hardware security: Formal modelling and proof in the CHERI design and implementation process

Proceedings - IEEE Symposium on Security and Privacy
29Citations
N/AReaders
Get full text
View more at Scopus

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Cite

CITATION STYLE

APA

Azevedo De Amorim, A., Collins, N., DeHon, A., Demange, D., Hri̧cu, C., Pichardie, D., … Tolmach, A. (2014). A verified information-flow architecture. In Conference Record of the Annual ACM Symposium on Principles of Programming Languages (pp. 165–178). https://doi.org/10.1145/2535838.2535839

Readers' Seniority

Tooltip

PhD / Post grad / Masters / Doc 14

70%

Professor / Associate Prof. 2

10%

Lecturer / Post doc 2

10%

Researcher 2

10%

Readers' Discipline

Tooltip

Computer Science 28

90%

Design 1

3%

Mathematics 1

3%

Engineering 1

3%

Save time finding and organizing research with Mendeley

Sign up for free