Skip to main content
To KTH's start page To KTH's start page

2018-05-23: Information-Flow Control for Concurrent Programs with Declassification

Daniel Schoepe, doctoral student at Chalmers in information-flow security of functional programs with database interaction, will give a seminar on the 23rd of May at 13:15. The seminar will be held in room 4523, Lindstedtsvägen 5. Welcome!

Abstract

Software systems handle a lot sensitive data that must be kept confidential. Such systems are often interactive with complex input-output behavior and handle data with different security levels, necessitating a way to prevent information leakage in complex, untrusted programs. However, existing information-flow control properties, such as noninterference are often too strict for real-world software, due to a lack of support for declassification. Security verification becomes even more challenging in the presence of concurrency and shared memory, which typically requires functional correctness guarantees to soundly reason about interaction between threads.

We present a novel security condition for interactive concurrent programs with shared memory and, to our knowledge, the first compositional approach allowing fine-grained reasoning with declassification support in a shared-memory concurrent setting.

Our declassification policies allow expressing both under what circumstances declassification is allowed as well as limiting exactly what part of secret information can be revealed. To that end, we adapt an existing notion for non-interactive programs, delimited release, to our setting and show a sound embedding into our framework.

We provide a security type system allowing for compositional verification by decoupling functional correctness from security reasoning. The type system leverages standard assertions about functional correctness to support intricate features such as declassification policies and value-dependent declassification, while keeping the type system simple. We show that correctness assertions that can be discharged using existing off-the-shelf verification techniques (such as Owicki-Gries and Rely-Guarantee reasoning). We show how to use our system to establish security of two case studies: a router connecting networks of different security levels and a declassification scheme with user interaction, as often seen in multi-level security operating systems (such as QubesOS).

All results are formalized in Isabelle/HOL.

About Daniel Schoepe

Daniel Schoepe got a Bachelor's degree from TU Darmstadt, working on formalizing information-flow security proofs in Isabelle with Heiko Mantel, and a Master's degree from Chalmers on information-flow security of functional programs with database interaction supervised by Andrei Sabelfeld. He is currently pursuing a Ph.D. at Chalmers in the same area, also supervised by Andrei Sabelfeld.

Belongs to: School of Electrical Engineering and Computer Science
Last changed: Oct 23, 2019
Title
2021-12-08: Testing Software and Hardware against Speculation Contracts
2021-12 03: Practical Data Access Minimization in Trigger-Action Platforms
2021-11-16: Securing software in the presence of realistic attackers and polices
2021-11-9: An In-depth Study of Java Deserialization Exploits and Vulnerabilities
2019-02-05 Faceted Secure Multi-Execution
2019-01-11 Privacy-preserving ridesharing and multi key-homomorphic signatures
2018-11-06 Authentication and Pairing Using Human Body Impedance
2018-10-26 Security and Privacy in the IoT: An Information-Theoretic Perspective
2018-09-17 Cyber-Defence Panel
2018-09-13: Reconfigurable Distributed MIMO for Physical-layer Security in Mobile Networks
2018-09-03: A Constraint Programming approach to deliver a Tolerant Algebraic Side-Channel Attack of AES
2018-06-18: Coarse-grained information-flow control as a library in Haskell
2018-06-07: The capacity of private information retrieval with eavesdroppers
2018-05-23: Information-Flow Control for Concurrent Programs with Declassification
2018-05-09: Browser fingerprinting: past, present and possible future
2018-05-07: The Verificatum Project 10-year Anniversary