Language based information routing security: Policy enforcement

George Oreku, Jianzhong Li, Fredrick Mtenzi

Research output: Contribution to journalArticlepeer-review

Abstract

Languages-based security promises to be a powerful tool with which provably secure routing applications may be developed. Programs written in these languages enforce a strong policy of non-interference, which ensures that high-security data will not be observable on low-security channels. The information routing security proposed aim to fill the gap between representation and enforcement by implementing and integrating the divers security services needed by policy. Policy is enforced by the run-time compiler and executions based mechanism to information violating routing policy and regulation of security services. Checking the routing requirements of explicit route achieves this result for statements involving explicit route. Unfortunately, such classification is often expressed as an operation within a given program, rather than as part of a policy, making reasoning about the security implications of a policy more difficult. We formalize our approach for a C++ like language and prove a modified form of our non-interference method. We have implemented our approach as an extension to C and provide some of our experience using it to build a secure information routing.

Original languageEnglish
Pages (from-to)91-98
Number of pages8
JournalInternational Arab Journal of Information Technology
Volume6
Issue number1
Publication statusPublished - 2009
Externally publishedYes

Keywords

  • Condition statements
  • Routing
  • Security policy

Fingerprint

Dive into the research topics of 'Language based information routing security: Policy enforcement'. Together they form a unique fingerprint.

Cite this