A language for information flow

Avraham Shinnar, Marco Pistoia, Anindya Banerjee
2009 Proceedings of the ACM SIGPLAN Fourth Workshop on Programming Languages and Analysis for Security - PLAS '09  
This paper presents λ I , a language for dynamic tracking of information flow across multiple, interdependent dimensions of information. Typical dimensions of interest are integrity and confidentiality. λ I supports arbitrary domain-specific policies that can be developed independently. λ I treats information-flow metadata as a first-class entity and tracks information flow on the metadata itself (integrity on integrity, integrity on confidentiality, etc.). This paper also defines IMPOLITE, a
more » ... fines IMPOLITE, a novel class of information-flow policies for λ I . Unlike many systems, which only allow for absolute-security relations, IM-POLITE can model more realistic security policies based on relative-security relations. IMPOLITE demonstrates how policies on interdependent dimensions of information can be simultaneously enforced within λ I 's unified framework.
doi:10.1145/1554339.1554354 dblp:conf/pldi/ShinnarPB09 fatcat:2cqctky52fbqted343447nc6zi