BSPL: A Language to Specify and Compose Fine-grained Information Flow Policies

Viet Triem Tong, Valérie; Mé, Ludovic

Home // SECURWARE 2013, The Seventh International Conference on Emerging Security Information, Systems and Technologies // View article

BSPL: A Language to Specify and Compose Fine-grained Information Flow Policies

Authors:
Valérie Viet Triem Tong
Ludovic Mé

Keywords: Information flow policies, specification language, composition of information flow policies

Abstract:
We tackle the problem of operating systems security. The seriousness of the vulnerabilities in today’s software underlines the importance of using a monitor at the operating system level to check the legality of operations executed by (un)trusted software. Information flow control is one way to track the propagation of information in order to raise an alert when a suspicious flow, consequence of an attack, occurs. We propose here BSPL, a language to specify a fine-grained information flow policy. We present how BSPL enables to precisely specify the expected behavior of applications relatively to sensitive pieces of information. We also propose a way to compose such information flow policies.

Pages: 46 to 53

Copyright: Copyright (c) IARIA, 2013

Publication date: August 25, 2013

Published in: conference

ISSN: 2162-2116

ISBN: 978-1-61208-298-1

Location: Barcelona, Spain

Dates: from August 25, 2013 to August 31, 2013