2010
DOI: 10.1007/978-3-642-11486-1_30
View full text |Buy / Rent full text
|
Sign up to set email alerts
|

Abstract: Abstract. Historically, dynamic techniques are the pioneers of the area of information flow in the 70's. In their seminal work, Denning and Denning suggest a static alternative for information-flow analysis. Following this work, the 90's see the domination of static techniques for information flow. The common wisdom appears to be that dynamic approaches are not a good match for security since monitoring a single path misses public side effects that could have happened in other paths. Dynamic techniques for inf… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
5

Citation Types

0
103
0

Year Published

2010
2010
2010
2010

Publication Types

Select...
1

Relationship

1
0

Authors

Journals

citations
Cited by 85 publications
(40 citation statements)
references
References 22 publications
(40 reference statements)
0
103
0
Order By: Relevance
“…Another alternative is purely dynamic enforcement (e.g., [20], [50], [43], [4]), that performs dynamic security checks similar to the ones done by static analysis. For example, whenever there is a high variable on the righthand side of an assignment (tracking explicit flows) or in case the assignment appears inside of a high conditional or while loop (tracking implicit flows), then the assignment is only allowed in case the assigned variable is high.…”
Section: Introductionmentioning
confidence: 99%
See 4 more Smart Citations
“…Another alternative is purely dynamic enforcement (e.g., [20], [50], [43], [4]), that performs dynamic security checks similar to the ones done by static analysis. For example, whenever there is a high variable on the righthand side of an assignment (tracking explicit flows) or in case the assignment appears inside of a high conditional or while loop (tracking implicit flows), then the assignment is only allowed in case the assigned variable is high.…”
Section: Introductionmentioning
confidence: 99%
“…Recently, it has been shown (e.g., [43], [5], [4], [39], [6]) that purely dynamic monitors can enforce the same security policy as Denning-style static analysis: terminationinsensitive noninterference. In addition, Sabelfeld and Russo [43] prove that sound purely dynamic information-flow enforcement is more permissive than static analysis in the flow-insensitive case (where variables are assigned security levels at the beginning of the execution and this assignment is kept unchanged during the execution).…”
Section: Introductionmentioning
confidence: 99%
See 3 more Smart Citations