A type system for data-flow integrity on Windows Vista-Reference-Cited by-同舟云学术

A type system for data-flow integrity on Windows Vista

Published:2009-02-28 Issue:12 Volume:43 Page:9-20
ISSN:0362-1340
Container-title:ACM SIGPLAN Notices
language:en
Short-container-title:SIGPLAN Not.

Author:

Chaudhuri Avik¹,Naldurg Prasad²,Rajamani Sriram²

Affiliation:

1. University of Maryland at College Park

2. Microsoft Research India

Abstract

The Windows Vista operating system implements an interesting model of multi-level integrity. We observe that in this model, trusted code must participate in any information-flow attack. Thus, it is possible to eliminate such attacks by statically restricting trusted code. We formalize this model by designing a type system that can efficiently enforce data-flow integrity on Windows Vista. Typechecking guarantees that objects whose contents are statically trusted never contain untrusted values, regardless of what untrusted code runs in the environment. Some of Windows Vista's runtime access checks are necessary for soundness; others are redundant and can be optimized away.

Publisher

Association for Computing Machinery (ACM)

Subject

Computer Graphics and Computer-Aided Design,Software

Link

https://dl.acm.org/doi/pdf/10.1145/1513443.1513447

Reference59 articles.

1. Secrecy by typing in security protocols

2. A core calculus of dependency

3. Analyzing security protocols with secrecy types and logic programs

4. Explicit substitutions

5. Mobile values, new names, and secure communication

Cited by 1 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Curry-Style Explicit Substitutions for the Linear and Affine Lambda Calculus;Automated Reasoning;2010