an information flow calculus
play

An information-flow calculus for the non-security expert Alejandro - PowerPoint PPT Presentation

Jan 21, 2023 •120 likes •328 views

An information-flow calculus for the non-security expert Alejandro Russo (russo@chalmers.se) Visiting Associate Professor, Stanford, CA, U.S.A. Chalmers, Gteborg, Sweden Work-in-progress with Pablo Buiras (Chalmers), Deian Stefan (Stanford),

  1. An information-flow calculus for the non-security expert Alejandro Russo (russo@chalmers.se) Visiting Associate Professor, Stanford, CA, U.S.A. Chalmers, Göteborg, Sweden Work-in-progress with Pablo Buiras (Chalmers), Deian Stefan (Stanford), and David Mazierès (Stanford)

  2. Information-flow Scenario Preserve confidentiality even in the presence of malicious code

  3. Motivation

  4. Security measures • Access control – State-of-the-art

  5. Security lattice • It specifies the allowed flows of information secret public

  6. Example of Rules Arrows for Secure Information Flow [Li, Zdancewic 10]

  7. Information-flow Scenario

  8. Towards a Monadic Calculus Reader Monad - The attacker might observe the systems data Writer Monad - The attacker writes input to the system Informatoin-flow control is almost just about controling reading and writing side-effects

  9. Towards a Monadic Calculus Security State (floating label) Restricted interface for the State monad!

  10. A Floating Label System [Stefan et al. 11] Taint Guard

  11. Example of Rules Arrows for Secure Information Flow [Li, Zdancewic 10] Guard

  12. Example of Rules Information-Flow Security for a Core of JavaScript [Hedin, Sabelfeld 12] Taint

  13. Designing IFC Systems Read effect Write effect  newIORef  readIORef  writeIORef   modifyIORef Read effect Write effect Guard newLIORef Taint readLIORef Guard writeLIORef Taint Guard modifyLIORef

  14. The IFC Monad [Swierstra 08] data ReadEffect l a where Taint :: l -> a -> ReadEffect l a data WriteEffect l a where Guard :: l -> a -> WriteEffect l a Free (ReadEffect l) a Free (WriteEffect l) a IFC l a = Free (WriteEffect l :+: ReadEffect l) a Types reflects the behavior w.r.t taint and guard!

  15. Label Creep [Stefan et al. 11][Breeze 13] • The floating label gets too high too soon!

  16. Label Creep [Stefan et al. 11][Breeze 13] • The floating label gets too high too soon! Fresh environment

  17. A specific Local (Reader Monad) data Env l a where Ask :: (l -> a) -> Env l a Put :: l -> Env l a Extended IFC l a = Free (WriteEffect l :+: ReadEffect l :+: Env l) a local :: forall l. Label l => IFC l () -> IFC l () local m = do (s :: l) <- IFC.ask m IFC.put s return ()

  18. Is it General Enough? LIO IFC LB-Monitors

  19. Final Remarks • IFC = controlling reading and writing side-effects + a notion of scope (local) type IFC l a = Free (ReadEffect l :+: WriteEffect l :+: Env l) a • A non-security expert can have a good impression of the security checks (taint/guard) • Floating label systems seems to be more convenient than traditional LB-monitors

  20. Interested in Details? https://github.com/alejandrorusso/ifc-wg2.8.git

Recommend

May 15: Information Flow and Confinement Information flow for integrity policies Examples

May 15: Information Flow and Confinement Information flow for integrity policies Examples

May 15: Information Flow and Confinement Information flow for integrity policies Examples of information flow controls Android phone Firewalls Confinement Virtual machines May 15, 2017 ECS 235B Spring Quarter 2017 Slide

487 views • 32 slides
Decompilation is an information-flow problem (Or, information flow meets program transformation)

Decompilation is an information-flow problem (Or, information flow meets program transformation)

Decompilation is an information-flow problem (Or, information flow meets program transformation) Boris Feigin Computer Laboratory, University of Cambridge PLID 2008 joint work with Alan Mycroft 1 / 22 Motivation Given suitable tools we

605 views • 33 slides
Lecture 1 : Lambda Calculus CS6202 Introduction 1 Lambda Calculus Lambda Calculus

Lecture 1 : Lambda Calculus CS6202 Introduction 1 Lambda Calculus Lambda Calculus

CS6202: Advanced Topics in Programming Languages and Systems Lecture 1 : Lambda Calculus CS6202 Introduction 1 Lambda Calculus Lambda Calculus Untyped Lambda Calculus Evaluation Strategy Techniques - encoding, extensions,

791 views • 56 slides
IP Flow Information eXport IP Flow Information eXport (IPFIX) (IPFIX)

IP Flow Information eXport IP Flow Information eXport (IPFIX) (IPFIX)

IP Flow Information eXport IP Flow Information eXport (IPFIX) (IPFIX) elisa.boschi@hitachi-eu.com {boschi, zseby, mark, hirsch}@fokus.fraunhofer.de Outline Outline IPFIX Terminology Applicability Initial Goals

212 views • 19 slides
Towards a Flow- and Path-Sensitive Information Flow Analysis Peixuan Li, Danfeng Zhang

Towards a Flow- and Path-Sensitive Information Flow Analysis Peixuan Li, Danfeng Zhang

Towards a Flow- and Path-Sensitive Information Flow Analysis Peixuan Li, Danfeng Zhang Pennsylvania State University University Park, PA, USA {pzl129,zhang}@cse.psu.edu Background: Information Flow Analysis o Security enforcement to prevent

379 views • 24 slides
Relational Calculus Another Theoretical QL-Relational Calculus Comes in two flavors: Tuple

Relational Calculus Another Theoretical QL-Relational Calculus Comes in two flavors: Tuple

Relational Calculus Another Theoretical QL-Relational Calculus Comes in two flavors: Tuple relational calculus (TRC) and Domain relational calculus (DRC). Calculus has variables, constants, comparison ops , logical connectives and

513 views • 14 slides
Whats Calculus? Answer: Next semester! (Fundamental Theorem of Calculus, by Newton and

Whats Calculus? Answer: Next semester! (Fundamental Theorem of Calculus, by Newton and

Whats Calculus? Answer: Next semester! (Fundamental Theorem of Calculus, by Newton and Leibniz.) Virtually all of modern science uses calculus! Physics, engineering, statistics, biology (modeling), etc. This semester: Differential Calculus.

552 views • 17 slides
Flow Networks Flow Network: - digraph - weights, called capacities on edges - two

Flow Networks Flow Network: - digraph - weights, called capacities on edges - two

M AXIMUM F LOW How to do it... Why you want it... Where you find it... The Tao of Flow: Let your body go with the flow. -Madonna, Vogue Maximum flow...because youre worth it. -Loreal Go with the flow, Joe.

619 views • 20 slides
Quantifying Information is a fundamental issue in computer security: Flow Using Min-Entropy

Quantifying Information is a fundamental issue in computer security: Flow Using Min-Entropy

Secure Information Flow ! Protecting the confidentiality of secret information Quantifying Information is a fundamental issue in computer security: Flow Using Min-Entropy Blood type: AB Birth date: 9/5/46 HIV: positive ! Access control and

399 views • 10 slides
Lecture 19: Flow and Confinement Examples of information flow applications The confinement

Lecture 19: Flow and Confinement Examples of information flow applications The confinement

Lecture 19: Flow and Confinement Examples of information flow applications The confinement problem Covert channels Isolation: virtual machines, sandboxes March 2, 2009 ECS 235B, Winter Quarter 2009 Slide #19-1 Matt Bishop, UC

322 views • 30 slides
Lusteral Uniform and Modular Composition of Data-flow &amp; Control-flow in the Lazy

Lusteral Uniform and Modular Composition of Data-flow &amp; Control-flow in the Lazy

Lusteral Uniform and Modular Composition of Data-flow &amp; Control-flow in the Lazy -Calculus joint work with Marc Pouzet M. Mendler, University of Bamberg Synchron 2008 CPL Aussois Synchron 2008 CPL Aussois 1 Constructive Data

491 views • 48 slides
-Calculus Christine Rizkallah CSE, UNSW (and data61) Term3 2019 1 -Calculus Church

-Calculus Christine Rizkallah CSE, UNSW (and data61) Term3 2019 1 -Calculus Church

-Calculus Church Encodings -Calculus Christine Rizkallah CSE, UNSW (and data61) Term3 2019 1 -Calculus Church Encodings -Calculus The term language we defined for Higher Order Abstract Syntax is almost a full featured programming

620 views • 32 slides
1 Side Track: Evaluation Order Evaluation Order, II Full -reduction: is Redex: Term

1 Side Track: Evaluation Order Evaluation Order, II Full -reduction: is Redex: Term

calculus Course 2D1453, 2006-07 Alonzo Church, 1903-1995 Church-Turing thesis First undecidability results Advanced Formal Methods Invented -calculus in 30s Lecture 2: Lambda calculus -Calculus

391 views • 6 slides
Information Flow Gang Tan Penn State University Spring 2019 CMPSC 447, Software Security

Information Flow Gang Tan Penn State University Spring 2019 CMPSC 447, Software Security

Information Flow Gang Tan Penn State University Spring 2019 CMPSC 447, Software Security Information Flow 3 Many security requirements can be formulated as what information flow is allowed/disallowed E.g., confidential data should not

478 views • 27 slides
Part II: Lambda Calculus Lambda Calculus is a foundation for functional programs. Its an

Part II: Lambda Calculus Lambda Calculus is a foundation for functional programs. Its an

Part II: Lambda Calculus Lambda Calculus is a foundation for functional programs. Its an operational semantics, based on term rewriting. Lambda Calculus was developed by Alonzo Church in the 1930s and 40s as a theory of

820 views • 42 slides
Lecture 17: Information Flow Basics and background Entropy Nonlattice flow policies

Lecture 17: Information Flow Basics and background Entropy Nonlattice flow policies

Lecture 17: Information Flow Basics and background Entropy Nonlattice flow policies Compiler-based mechanisms Execution-based mechanisms Examples Security Pipeline Interface Secure Network Server Mail Guard February

625 views • 44 slides
with Deferrable constraints in Haskell through the tale of a Haskell information flow control

with Deferrable constraints in Haskell through the tale of a Haskell information flow control

Gradually typed DSLs with Deferrable constraints in Haskell through the tale of a Haskell information flow control library Pablo Buiras, Alejandro Russo, Dimitrios Vytiniotis Information flow control 101 Non- interference:

465 views • 31 slides
Ni Nickel A Framework for Design and Verification of Information Flow Control Systems Helgi

Ni Nickel A Framework for Design and Verification of Information Flow Control Systems Helgi

Ni Nickel A Framework for Design and Verification of Information Flow Control Systems Helgi Sigurbjarnarson , Luke Nelson, Bruno Castro-Karney, James Bornholt, Emina Torlak, and Xi Wang .org Enforcing information flow control is critical

1.02k views • 58 slides
Secure Information Flow as a Safety Problem Overview Introduction to secure information flow

Secure Information Flow as a Safety Problem Overview Introduction to secure information flow

Secure Information Flow as a Safety Problem Overview Introduction to secure information flow Type-Based approach Self composition Downgrading Self composition with downgrading Type directed transformation

511 views • 22 slides
Information flow control for the web Prof. Frank PIESSENS Overview The web platform Web

Information flow control for the web Prof. Frank PIESSENS Overview The web platform Web

Information flow control for the web Prof. Frank PIESSENS Overview The web platform Web script security: threats and countermeasures A formal model of web scripts Information flow security Secure multi-execution The

2.25k views • 131 slides
Calculus without Limits: The difficulty of limits the Theory The difficulty of defining R

Calculus without Limits: The difficulty of limits the Theory The difficulty of defining R

Calculus without Limits C. K. Raju Introduction The size of calculus texts Calculus without Limits: The difficulty of limits the Theory The difficulty of defining R Current pedagogy of the calculus: a critique Imitating the European

1.82k views • 133 slides
Information Flow in Logic Programming Antoun Yaacoub Introduction Syntax and semantics Antoun

Information Flow in Logic Programming Antoun Yaacoub Introduction Syntax and semantics Antoun

Inf. flow in Logic Prog. Information Flow in Logic Programming Antoun Yaacoub Introduction Syntax and semantics Antoun Yaacoub Information flow in logic Pg. Deciding Institut de Recherche en Informatique de Toulouse (IRIT) bisimulation

683 views • 66 slides
Information Theory and Security: Quantitative Information Flow Pasquale Malacaria

Information Theory and Security: Quantitative Information Flow Pasquale Malacaria

Information Theory and Security: Quantitative Information Flow Pasquale Malacaria pm@dcs.qmul.ac.uk School of Electronic Engineering and Computer Science Queen Mary University of London Information Theory and Security: Quantitative Information

835 views • 54 slides
Logics for Classical and Quantum Information Flow Sonja Smets (ILLC, University of Amsterdam)

Logics for Classical and Quantum Information Flow Sonja Smets (ILLC, University of Amsterdam)

Logics for Classical and Quantum Information Flow Sonja Smets (ILLC, University of Amsterdam) Financial Support Acknowledgement: 1 Overview General Research Aim: Model and reason about various forms of information flow in interacting

877 views • 42 slides

More recommend