See this document in CiteSeerX!

Language-Based Information-Flow Security (2003)  (Make Corrections)  (95 citations)
Andrei Sabelfeld, Andrew C. Myers



  Home/Search   Context   Related

 
View or download:
cornell.edu/~andrei/./jsac.ps
cornell.edu/andru/papers...smjsac03.ps
cornell.edu/andru/paper...smjsac03.pdf


From:  cornell.edu/~andrei/ (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: Current standard security practices do not provide substantial assurance that the end-to-end behavior of a computing system satisfies important security policies such as confidentiality. An end-to-end confidentiality policy might assert that secret input data cannot be inferred by an attacker through the attacker's observations of system output; this policy regulates information flow. (Update)

Cited by:   More
Manifest Security for Distributed Information - Crary, Harper, Pfenning (2006)   (Correct)
A Monadic Analysis of Information Flow Security with Mutable.. - Karl Crary Aleksey   (Correct)
Maintaining Privacy on Derived Objects - Nicola Zannone Via   (Correct)

Active bibliography (related documents):   More   All
13.1:   Language-Based Information-Flow Security - Sabelfeld, Myers (2003)   (Correct)
1.5:   A Unifying Approach to the Security of Distributed and.. - Mantel, Sabelfeld (2002)   (Correct)
1.2:   A Model for Delimited Information Release - Sabelfeld, Myers (2004)   (Correct)

Similar documents based on text:   More   All
0.8:   Untrusted Hosts and Confidentiality: Secure Program.. - Zdancewic, Zheng.. (2001)   (Correct)
0.4:   A PER Model of Secure Information Flow in Sequential Programs - Sabelfeld, Sands (2000)   (Correct)
0.3:   Secure Information Flow via Linear Continuations - Zdancewic, Myers (2001)   (Correct)

Related documents from co-citation:   More   All
42:   A sound type system for secure flow analysis - Volpano, Smith et al. - 1996
33:   JFlow: Practical mostly-static information flow control - Myers - 1999
33:   Certification of programs for secure information flow (context) - Denning, Denning - 1977

BibTeX entry:   (Update)

A. Sabelfeld and A. C. Myers. Language-Based Information-Flow Security. IEEE Journal on Selected Areas in Communications, 21(1), 2003. http://citeseer.ist.psu.edu/sabelfeld03languagebased.html   More

@misc{ sabelfeld03languagebased,
  author = "A. Sabelfeld and A. Myers",
  title = "Language-Based Information-Flow Security",
  text = "A. Sabelfeld and A. C. Myers. Language-Based Information-Flow Security.
    IEEE Journal on Selected Areas in Communications, 21(1), 2003.",
  year = "2003",
  url = "citeseer.ist.psu.edu/sabelfeld03languagebased.html" }
Citations (may not include all citations):
1447   The Mathematical Theory of Communication (context) - Shannon, Weaver - 1963
815   Abstract interpretation: A unified lattice model for static .. (context) - Cousot, Cousot - 1977
566   Proof-carrying code - Necula - 1997
521   Compiling with Continuations (context) - Appel - 1992  ACM
423   End-to-end arguments in system design - Saltzer, Reed et al. - 1984
410   Mobile ambients - Cardelli, Gordon - 1998  ACM   DBLP
404   A calculus for cryptographic protocols: The Spi calculus - Abadi, Gordon - 1999  DBLP
339   Efficient softwarebased fault isolation - Wahbe, Lucco et al. - 1993
247   Bisimulation through probabilistic testing (context) - Larsen, Skou - 1991  ACM   DBLP
244   Cryptography and Data Security (context) - Denning - 1982  ACM   DBLP
210   Its Syntax and Semantics (context) - Barendregt, Calculus - 1984
197   Dependent types in practical programming - Xi, Pfenning - 1999  ACM   DBLP
196   A lattice model of secure information flow (context) - Denning - 1976  ACM   DBLP
194   The protection of information in computer systems (context) - Saltzer, Schroeder - 1975
181   Principles of Program Analysis (context) - Nielson, Nielson et al. - 1999  ACM
170   Security policies and security models (context) - Goguen, Meseguer - 1982  DBLP
158   Secrecy by typing in security protocols - Abadi - 1997  ACM
158   Certification of programs for secure information flow (context) - Denning, Denning - 1977
158   Secrecy by typing in security protocols - Abadi - 1999
155   Secure computer systems: Mathematical foundations (context) - Bell, LaPadula - 1973
153   A note on the confinement problem - Lampson - 1973  ACM   DBLP
152   A sound type system for secure flow analysis - Volpano, Smith et al. - 1996  ACM
139   Secure information flow in a multithreaded imperative langua.. - Smith, Volpano - 1998
121   A core calculus of dependency - Abadi, Banerjee et al. - 1999  ACM   DBLP
120   Integrity considerations for secure computer systems (context) - Biba - 1977
102   The SLam calculus: programming with secrecy and integrity - Heintze, Riecke - 1998
100   Programming semantics for multiprogrammed computations - Dennis, VanHorn - 1966  ACM   DBLP
98   JFlow: Practical mostly-static information flow control - Myers - 1999
97   the security of public-key protocols (context) - Dolev, Yao - 1983
92   Monographs in Computer Science (context) - Abadi, Cardelli et al. - 1996
82   Department of Defense Trusted Computer System Evaluation Cri.. (context) - Defense - 1985
81   SASI enforcement of security policies: A retrospective - Erlingsson, Schneider - 1999
77   Unwinding and inference control (context) - Goguen, Meseguer - 1984  DBLP
75   Flexible policy-directed code safety - Evans, Twyman - 1999
72   A type-based approach to program security - Volpano, Smith - 1997  ACM   DBLP
62   Probabilistic noninterference in a concurrent language - Volpano, Smith - 1999
62   Probabilistic noninterference in a concurrent language - Volpano, Smith - 1998  ACM   DBLP
60   Specifications for multi-level security and hook-up property (context) - McCullough - 1987
59   Transforming out timing leaks - Agat - 2000
59   Probabilistic noninterference for multithreaded programs - Sabelfeld, Sands - 2000
56   A general theory of composition for trace sets closed under .. - McLean - 1994  ACM
55   Security models and information flow - McLean - 1990
55   A decentralized model for information flow control - Myers, Liskov - 1997
54   An axiomatic approach to information flow in programs (context) - Andrews, Reitman - 1980  ACM   DBLP
50   A model of information (context) - Sutherland - 1986
49   Secure information flow as typed process behaviour - Honda, Vasconcelos et al. - 2000
47   Information flow inference for ML - Pottier, Simonet - 2002  ACM   DBLP
47   Information flow inference for ML - Pottier, Simonet - 2002
47   A per model of secure information flow in sequential program.. - Sabelfeld, Sands - 2001  ACM   DBLP
47   A per model of secure information flow in sequential program.. - Sabelfeld, Sands - 1999  ACM   DBLP
47   Process algebra and non-interference - Ryan, Schneider - 1999  ACM   DBLP
45   Noninterference and the composability of security properties (context) - McCullough - 1988
43   A classification of security properties for process algebras - Focardi, Gorrieri - 1995
40   Compile-time detection of information flow in sequential pro.. - Banatre, Bryce et al. - 1994  ACM   DBLP
39   Simple object access protocol (SOAP) 1.1 (context) - Box, Ehnebuske et al. - 2000
39   A uniform type structure for secure information flow - Honda, Yoshida - 2002  ACM   DBLP
36   A semantic approach to secure information flow - Leino, Joshi - 1998
36   A semantic approach to secure information flow - Joshi, Leino - 2000
34   A language-based approach to security - Schneider, Morrisett et al. - 2000
34   Validating firewalls in mobile ambients - Nielson, Nielson et al. - 1999
34   Information flow inference for free - Pottier, Conchon - 2000
33   Semantics and program analysis of computationally secure inf.. - Laud - 2001  ACM   DBLP
33   The Java Virtual Machine (context) - Lindholm, Yellin - 1996
32   Timing attacks on implementations of Diffie-Hellman, RSA, DS.. - Kocher - 1996
30   A security flow control algorithm and its denotational seman.. - Mizuno, Schmidt - 1992  DBLP
30   Static analysis of processes for no read-up and no write-dow.. - Bodei, Degano et al. - 1999
29   Protection - Lampson - 1971  ACM   DBLP
29   Secure composition of untrusted code: Wrappers and causality.. - Sewell, Vitek - 2000  DBLP
29   A new type system for secure information flow - Smith - 2001  ACM   DBLP
29   Robust declassification - Zdancewic, Myers - 2001
29   Secure information flow and pointer confinement in a Java-li.. - Banerjee, Naumann - 2002
29   Approximate noninterference - Di Pierro, Hankin et al. - 2002
28   Verifying secrets and relative secrecy - Volpano, Smith - 2000  ACM   DBLP
27   Information transmission in sequential programs (context) - Cohen - 1978
26   Secure information flow and CPS - Zdancewic, Myers - 2001  ACM   DBLP
25   Secrecy types for asymmetric communication - Abadi, Blanchet - 2001  ACM   DBLP
24   Noninterference for concurrent programs - Boudol, Castellani - 2001  ACM   DBLP
22   Eliminating covert flows with minimum typings - Volpano, Smith - 1997  ACM   DBLP
22   Game semantics - Abramksy, McCusker - 1997  ACM
21   Logical relations for encryption - Sumii, Pierce - 2001  DBLP
21   Information flow analysis in a discrete-time process algebra - Focardi, Gorrieri et al. - 2000  ACM   DBLP
21   Language-based security - Kozen - 1999  ACM   DBLP
20   Trust in the -calculus (context) - Palsberg, rbk - 1995
20   Trust in the -calculus (context) - rbk, Palsberg - 1997
19   A technique for proving specifications are multilevel secure (context) - Feiertag - 1980
19   Untrusted hosts and confidentiality: Secure program partitio.. - Zdancewic, Zheng et al. - 2001
18   Secure information flow via linear continuations - Zdancewic, Myers - 2002  ACM   DBLP
17   Jif: Java information flow (context) - Myers, Nystrom et al. - 2001
17   Proving noninterference and functional correctness using tra.. - McLean - 1992  DBLP
16   Information transmission in computational systems (context) - Cohen - 1977  ACM   DBLP
16   The security architecture formerly known as stack inspection.. (context) - Wallach, Appel et al. - 2000
15   A generic approach to the security of multi-threaded program.. - Mantel, Sabelfeld - 2001  ACM   DBLP
15   the composition of secure systems (context) - Mantel - 2002
15   Secure introduction of one-way functions (context) - Volpano - 2000  ACM   DBLP
15   Memoryless subsystems (context) - Fenton - 1974
15   The epistemic representation of information flow security in.. - Syverson - 1995  ACM   DBLP
14   Programming Languages for Information Security (context) - Zdancewic - 2002
14   Information Protection Systems (context) - Fenton - 1973
13   Probabilistic information flow in a process algebra (context) - Aldini - 2001  ACM   DBLP
13   Java security (context) - Fritzinger, Mueller - 1996
13   Static dependent types for first class modules - Sheldon, Gifford - 1990  ACM   DBLP
13   Non-deterministic games and program analysis: An application.. - Malacaria, Hankin - 1999
12   Confidentiality for mobile code: The case of a simple paymen.. - Dam, Giambiagi - 2000
12   Information flow control in a distributed object-oriented sy.. - Mizuno, Oldehoeft - 1987
12   Possibilistic definitions of security -- An assembly kit (context) - Mantel - 2000
12   Non-interference for concurrent programs and thread systems - Boudol, Castellani - 2002
12   Static confidentiality enforcement for distributed programs - Sabelfeld, Mantel - 2002
10   Quantifying information flow - Lowe - 2002
10   Type Based Techniques for Covert Channel Elimination and Reg.. (context) - Agat - 2000
9   Secure computer systems: A mathematical model (context) - LaPadula, Bell - 1973
8   From System F to typed assembly language - Morrisett, Walker et al. - 1999
8   Information flow vs resource access in the asynchronous pi-c.. - Hennessy, Riely - 2000
8   Static analysis and computer security: New techniques for so.. (context) - Wagner - 2000
8   Enforcing security properties by type specialization (context) - Thiemann - 2001
7   Cryptographic types - Duggan - 2002  ACM   DBLP
7   Information flow for Algol-like languages (context) - Clark, Hankin et al. - 2002
7   A least fixed point approach to inter-procedural information.. - Mizuno - 1989
6   Probabilistic confinement in a declarative framework - Di Pierro, Hankin et al. - 2000  DBLP
6   Static analysis for secrecy and non-interference in networks.. - Bodei, Degano et al. - 2001
6   Safety versus secrecy - Volpano - 1999  ACM   DBLP
6   On confidentiality and algorithms (context) - Agat, Sands - 2001  ACM   DBLP
6   An approach to information security in distributed systems - Banatre, Bryce et al. - 1995  ACM   DBLP
6   Quantitative analysis of the leakage of confidential data (context) - Clark, Hunt et al. - 2001
5   Can you trust your data (context) - rbk - 1995
5   Information flow control in a parallel language framework (context) - Banatre, Bryce - 1993  DBLP
5   A simple view of type-secure information flow in the picalcu.. - Pottier - 2002
5   A unifying approach to the security of distributed and multi.. - Mantel, Sabelfeld - 2002  ACM   DBLP
5   CSP and determinism in security modeling (context) - Roscoe - 1995
4   A general theory of composition for a class (context) - McLean - 1996
4   Partial evaluation and non-interference for object calculi - Barthe, Serpette - 1999
4   Information flow in parallel programs: An axiomatic approach (context) - Reitman - 1978
4   An information flow tool for Gypsy (context) - McHugh, Good - 1985
4   Secrecy for mobile implementations of security protocols - Giambiagi - 2001
4   The impact of synchronisation on secure information flow in .. - Sabelfeld - 2001  ACM   DBLP
4   Analysing approximate confinement under uniform attacks - Di Pierro, Hankin et al. - 2002  ACM   DBLP
4   HYDRA: The kernel of a multiprocessor system (context) - Wulf, Cohen et al. - 1974
3   Complete, safe information flow with decentralized labels - Myers, Liskov - 1998
3   Semantic Models for the Security of Sequential and Concurren.. - Sabelfeld - 2001
3   Fine-grained information flow analysis for a -calculus with.. (context) - Simonet - 2002
3   Trust and Dependence Analysis (context) - rbk - 1997
2   Published as CMU Tech Report CMU-CS (context) - Morrisett, Types et al. - 1995
2   Confidentiality for implementations of security protocols (context) - Giambiagi - 2002
2   Security analysis using flow logics - Bodei, Degano et al. - 2000  ACM   DBLP
2   Static analysis for the -calculus with applications to secu.. (context) - Bodei, Degano et al. - 2001
2   Mathematical models of computer security---tutorial lectures (context) - Ryan - 2001
2   Security typings by abstract interpretation (context) - Zanotti - 2002  ACM   DBLP



The graph only includes citing articles where the year of publication is known.

Documents on the same site (http://www.cs.cornell.edu/~andrei/):   More
Static Confidentiality Enforcement for Distributed Programs - Sabelfeld, Mantel (2002)   (Correct)
Confidentiality for Multithreaded Programs via Bisimulation - Sabelfeld   (Correct)
A Unifying Approach to the Security of Distributed and.. - Mantel, Sabelfeld (2002)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC