A monadic analysis of information flow security with mutable state

KARL CRARY; ALEKSEY KLIGER; FRANK PFENNING

doi:10.1017/S0956796804005441

Abstract

Core share and HTML view are not available for this content. However, as you have access to this content, a full PDF is available via the ‘Save PDF’ action button.

We explore the logical underpinnings of higher-order, security-typed languages with mutable state. Our analysis is based on a logic of information flow derived from lax logic and the monadic metalanguage. Thus, our logic deals with mutation explicitly, with impurity reflected in the types, in contrast to most higher-order security-typed languages, which deal with mutation implicitly via side-effects. More importantly, we also take a store-oriented view of security, wherein security levels are associated with elements of the mutable store. This view matches closely with the operational semantics of low-level imperative languages where information flow is expressed by operations on the store. An interesting feature of our analysis lies in its treatment of upcalls (low-security computations that include high-security ones), employing an “informativeness” judgment indicating under what circumstances a type carries useful information.

Crossref Citations

This article has been cited by the following publications. This list is generated based on data provided by Crossref.

Boudol, Gérard 2005. Theoretical Aspects of Computing – ICTAC 2005. Vol. 3722, Issue. , p. 366.

Matos, A.A. and Boudol, G. 2005. On Declassification and the Non-Disclosure Policy. p. 226.

Tse, Stephen and Zdancewic, Steve 2005. Programming Languages and Systems. Vol. 3444, Issue. , p. 279.

Tse, Stephen and Zdancewic, Steve 2007. Run-time principals in information-flow type systems. ACM Transactions on Programming Languages and Systems, Vol. 30, Issue. 1, p. 6.

Boudol, Gérard 2009. Formal Aspects in Security and Trust. Vol. 5491, Issue. , p. 20.

SCHWINGHAMMER, JAN 2009. Coherence of subsumption for monadic types. Journal of Functional Programming, Vol. 19, Issue. 2, p. 157.

Devriese, Dominique and Piessens, Frank 2011. Information flow enforcement in monadic libraries. p. 59.

Swamy, Nikhil Guts, Nataliya Leijen, Daan and Hicks, Michael 2011. Lightweight monadic programming in ML. p. 15.

Chen, Yan Dunfield, Jana Hammer, Matthew A. and Acar, Umut A. 2011. Implicit self-adjusting computation for purely functional programs. p. 129.

Swamy, Nikhil Guts, Nataliya Leijen, Daan and Hicks, Michael 2011. Lightweight monadic programming in ML. ACM SIGPLAN Notices, Vol. 46, Issue. 9, p. 15.

Stefan, Deian Russo, Alejandro Mitchell, John C. and Mazières, David 2011. Flexible dynamic information flow control in Haskell. p. 95.

Chen, Yan Dunfield, Jana Hammer, Matthew A. and Acar, Umut A. 2011. Implicit self-adjusting computation for purely functional programs. ACM SIGPLAN Notices, Vol. 46, Issue. 9, p. 129.

Chen, Yan Dunfield, Jana and Acar, Umut A. 2012. Type-directed automatic incrementalization. p. 299.

Matos, Ana Almeida and Santos, José Fragoso 2012. Typing illegal information flows as program effects. p. 1.

Chen, Yan Dunfield, Jana and Acar, Umut A. 2012. Type-directed automatic incrementalization. ACM SIGPLAN Notices, Vol. 47, Issue. 6, p. 299.

Stefan, Deian Russo, Alejandro Mitchell, John C. and Mazières, David 2012. Flexible dynamic information flow control in Haskell. ACM SIGPLAN Notices, Vol. 46, Issue. 12, p. 95.

Hassan, Doaa and Sabry, Amr 2013. Encoding secure information flow with restricted delegation and revocation in Haskell. p. 11.

CHEN, YAN DUNFIELD, JANA HAMMER, MATTHEW A. and ACAR, UMUT A. 2014. Implicit self-adjusting computation for purely functional programs. Journal of Functional Programming, Vol. 24, Issue. 1, p. 56.

Hicks, Michael Bierman, Gavin Guts, Nataliya Leijen, Daan and Swamy, Nikhil 2014. Polymonadic Programming. Electronic Proceedings in Theoretical Computer Science, Vol. 153, Issue. , p. 79.

Reynolds, Thomas N. Procter, Adam Harrison, William L. and Allwein, Gerard 2017. A core calculus for secure hardware. p. 122.

Download full list

Article contents

A monadic analysis of information flow security with mutable state

Abstract

Discussions

This article has been cited by the following publications. This list is generated based on data provided by Crossref.

Article contents

A monadic analysis of information flow security with mutable state

Abstract

Discussions

Save article to Kindle

Save article to Dropbox

Save article to Google Drive

Reply to: Submit a response

Your details

You have entered the maximum number of contributors

Conflicting interests