Abstract
Languages-based security promises to be a powerful tool with which provably secure routing applications may be developed. Programs written in these languages enforce a strong policy of non-interference, which ensures that high-security data will not be observable on low-security channels. The information routing security proposed aim to fill the gap between representation and enforcement by implementing and integrating the divers security services needed by policy. Policy is enforced by the run-time compiler and executions based mechanism to information violating routing policy and regulation of security services. Checking the routing requirements of explicit route achieves this result for statements involving explicit route. Unfortunately, such classification is often expressed as an operation within a given program, rather than as part of a policy, making reasoning about the security implications of a policy more difficult. We formalize our approach for a C++ like language and prove a modified form of our non-interference method. We have implemented our approach as an extension to C and provide some of our experience using it to build a secure information routing.
Original language | English |
---|---|
Pages (from-to) | 91-98 |
Number of pages | 8 |
Journal | International Arab Journal of Information Technology |
Volume | 6 |
Issue number | 1 |
Publication status | Published - 2009 |
Externally published | Yes |
Keywords
- Condition statements
- Routing
- Security policy