Download or read book Towards Practical Information Flow Security written by Peixuan Li and published by . This book was released on 2021 with total page pages. Available in PDF, EPUB and Kindle. Book excerpt: In a world that becomes extensively connected by the internet, information is consumed and shared more than ever before. Protecting sensitive information manipulated by computing systems has been a vital task for information security, where information flow analysis has been a promising approach due to the rigorous end-to-end security guarantee that it provides. Information flow analysis assumes that secrets are stored in variables and security levels are associated with variables to describe the intended secrecy of their values. The analysis tracks how information propagates inside a computing system and disallows any unintended usage of sensitive data. Classic Denning-style information flow analysis is well-studied with a variety of enforcement approaches backed with solid theoretical foundation. However, classic information flow analysis is shown to be inadequate for real-world applications. First, real-world applications almost always require some dynamic policy, where the sensitivity of information can change during program execution. But security levels are assumed to be fixed in classic information flow analysis. As a result, the classic information flow approach is not applicable to applications with dynamic policies due to the lack of expressiveness to model sensitivity mutations. Second, even for a static policy, classic information flow analysis is typically flow- and path-insensitive, which raises many false alarms and thus undermines the accuracy of analysis results. Given these limitations, this dissertation seeks to build novel and advanced information flow analyses that are more practical for real-world applications. To improve precision, we develop a flow- and path-sensitive analysis (based on a static program transformation and a dependent type system) that reduces false alarms compared with classic information flow analysis. Additionally, we develop a dependent label inference framework to free the programmers from manually providing intricate dependent labels needed in the flow- and path-insensitive analysis. To support dynamic policy, we present a semantics framework to understand and compare existing policies. Furthermore, we present Dynamic Release, the first information flow policy that enables declassification, erasure, delegation and revocation at the same time. To make it feasible to enforce dynamic policies, we distill the conditions needed to soundly and completely decompose a dynamic policy into several code blocks with their corresponding static policies. We formalize and prove that it is possible to decompose a transient dynamic policy in a sound and complete way. However, sound and complete decomposition of a persistent policy is infeasible, as the policy by definition needs to exam the history of program execution.