Secure multi-execution: Fine-grained, declassification-aware, and transparent
W Rafnsson, A Sabelfeld - Journal of Computer Security, 2016 - content.iospress.com
Journal of Computer Security, 2016•content.iospress.com
Recently, much progress has been made on achieving information-flow security via secure
multi-execution. Secure multi-execution (SME) is an elegant way to enforce security by
executing a given program multiple times, once for each security level, while carefully
dispatching inputs and ensuring that an execution at a given level is responsible for
producing outputs for information sinks at that level. Secure multi-execution guarantees
noninterference, in the sense of no dependencies from secret inputs to public outputs, and …
multi-execution. Secure multi-execution (SME) is an elegant way to enforce security by
executing a given program multiple times, once for each security level, while carefully
dispatching inputs and ensuring that an execution at a given level is responsible for
producing outputs for information sinks at that level. Secure multi-execution guarantees
noninterference, in the sense of no dependencies from secret inputs to public outputs, and …
Abstract
Recently, much progress has been made on achieving information-flow security via secure multi-execution. Secure multi-execution (SME) is an elegant way to enforce security by executing a given program multiple times, once for each security level, while carefully dispatching inputs and ensuring that an execution at a given level is responsible for producing outputs for information sinks at that level. Secure multi-execution guarantees noninterference, in the sense of no dependencies from secret inputs to public outputs, and transparency, in the sense that if a program is secure then its secure multi-execution does not disable any of its original behavior.
content.iospress.com