On high-assurance information-flow-secure programming languages

Authors

Toby Murray

NICTA

UNSW

Abstract

We argue that high-assurance systems require high-assurance information-flow-secure programming languages. As a step towards such languages, we present the, to our knowledge, first concurrent theory of information flow security that supports (1) compositional reasoning under dynamic assumptions, and (2) value-dependent classification, to handle the dynamism inherent in modern high-assurance systems. We sketch out our vision and a roadmap for building self-certifying information-flow-secure programming languages.

BibTeX Entry

  @inproceedings{Murray_15,
    address          = {Prague, Czech Republic},
    author           = {Murray, Toby},
    booktitle        = {ACM SIGPLAN Workshop on Programming Languages and Analysis for Security},
    month            = jul,
    pages            = {43--48},
    paperurl         = {https://trustworthy.systems/publications/nicta_full_text/8697.pdf},
    title            = {On High-Assurance Information-Flow-Secure Programming Languages},
    year             = {2015}
  }

Download

• Full text
• BibTeX