Conference ProceedingsOPEN ACCESS

A Better Facet of Dynamic Information Flow Control

The Web Conference 2018 - Companion of the World Wide Web Conference, WWW 2018 (2018) 731-739
DOI: 10.1145/3184558.3185979
13Citations
Citations of this article
7Readers
Mendeley users who have this article in their library.
Get full text

Abstract

Multiple Facets (MF) is a dynamic enforcement mechanism which has proved to be a good fit for implementing information flow security for JavaScript. It relies on multi executing the program, once per each security level or view, to achieve soundness. By looking inside programs, MF encodes the views to reduce the number of needed multi-executions. In this work, we extend Multiple Facets in three directions. First, we propose a new version of MF for arbitrary lattices, called Generalised Multiple Facets, or GMF. GMF strictly generalizes MF, which was originally proposed for a specific lattice of principals. Second, we propose a new optimization on top of GMF that further reduces the number of executions. Third, we strengthen the security guarantees provided by Multiple Facets by proposing a termination sensitive version that eliminates covert channels due to termination.

Author supplied keywords

Cite

CITATION STYLE

APA

Ngo, M., Bielova, N., Flanagan, C., Rezk, T., Russo, A., & Schmitz, T. (2018). A Better Facet of Dynamic Information Flow Control. In The Web Conference 2018 - Companion of the World Wide Web Conference, WWW 2018 (pp. 731–739). Association for Computing Machinery, Inc. https://doi.org/10.1145/3184558.3185979

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free