This paper contributes to the investigation of object-sensitive information flow properties for sequential Java, i.e., properties that take into account information leakage through objects, as opposed to primitive values. We present two improvements to a popular object-sensitive non-interference property. Both reduce the burden on analysis and monitoring tools. We present a formalization of this property in a program logic – JavaDL in our case – which allows using an existing tool without requiring program modification. The third contribution is a novel finegrained specification methodology. In our approach, arbitrary JavaDL terms (read ‘side-effect-free Java expressions’) may be assigned a security level – in contrast to security labels being attached to fields and variables only.
CITATION STYLE
Beckert, B., Bruns, D., Klebanov, V., Scheben, C., Schmitt, P. H., & Ulbrich, M. (2014). Information flow in object-oriented software. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 8901, pp. 19–37). Springer Verlag. https://doi.org/10.1007/978-3-319-14125-1_2
Mendeley helps you to discover research relevant for your work.