Documente Academic
Documente Profesional
Documente Cultură
Information Flow:
The way that information moves through a program.
Is define by variables and methods in program.
Problem:
Each time a program produces an output
It is a possibility that information it contains may be disclose
Solution:
Permission based model: to impose ownership on variables
Only owner authorized to read and write variables
Controlling Information Flow
3
Exemption:
This provide a security in an application not in system (will be leaked from system).
Proposal:
Decentralized Label Model
Decentralized Label Model
(Principals and Policies)
4
Principals:
Are Users, groups or roles
behalf.
Limits in principals:
T(*) can act for every principal and called the top
principal
I(_) which allows all principals to act for it is called
bottom principal
… Decentralized Label Model
5
Policies:
DLM Allows programmer to specify policies using
import jif.principals.*;
public class Example1{
public static void main{}(principal{} p, String[]{} args){
//construct the principals .
final principal Alice = new Alice(); final principal Bob = new Bob();
//set the private data, notice the fields only have owners.
String{Alice:} aliceCarReg =“XYZ”;
String{Bob:} BobCarReg =“ABC”;
String{} publicReg=“”;
//attempt to set the public field with Alice's private car registration
publicReg = aliceCarReg; // will generate error
}
}
Debug:
String{Alice:_} aliceCarReg =“XYZ”;
8
Blog: http://mohsinpage.wordpress.com/
Twitter: http://twitter.com/moshsin
LinkedIn: http://pk.linkedin.com/in/rmyasin
E-Mail: myasinr@gmail.com