Static Enforcement of Security in Runtime Systems

Publikation: Bidrag til bog/antologi/rapport/proceedingKonferencebidrag i proceedingsForskningpeer review

Dokumenter

  • Zee

    Accepteret manuskript, 1,07 MB, PDF-dokument

DOI

Underneath every modern programming language is a runtime environment (RTE) that handles features such as automatic memory management and thread scheduling. In the information-flow control (IFC) literature, the RTE is often part of the trusted computing base (TCB), and there has been little focus on applying IFC to the implementation of the RTE itself. In this paper we address this problem by designing an IFC language, Zee, for implementing secure RTEs, thereby removing the RTE from the TCB. We implement Zee and design and implement secure versions of garbage collectors and thread schedulers using Zee. We also prove that a faithful calculus of Zee satisfies a strong variant of timing-sensitive noninterference.

OriginalsprogEngelsk
TitelProceedings - 2019 IEEE 32nd Computer Security Foundations Symposium, CSF 2019
Antal sider16
ForlagIEEE
Udgivelsesår2019
Sider335-350
Artikelnummer8823712
ISBN (Elektronisk)9781728114064
DOI
StatusUdgivet - 2019
Begivenhed2019 IEEE 32nd Computer Security Foundations Symposium (CSF) - Hoboken, USA
Varighed: 25 jun. 201928 jun. 2019
Konferencens nummer: 32

Konference

Konference2019 IEEE 32nd Computer Security Foundations Symposium (CSF)
Nummer32
LandUSA
ByHoboken
Periode25/06/201928/06/2019

Se relationer på Aarhus Universitet Citationsformater

Aktiviteter

Download-statistik

Ingen data tilgængelig

ID: 160409870