| | |
Summary: RIFLE: An Architectural Framework for User-Centric
Information-Flow Security
Neil Vachharajani Matthew J. Bridges Jonathan Chang Ram Rangan Guilherme Ottoni
Jason A. Blome George A. Reis Manish Vachharajani David I. August
Departments of Computer Science and Electrical Engineering
Princeton University
{nvachhar, mbridges, jcone, ram, ottoni, jblome, gareis, manishv, august}@princeton.edu
Abstract
Even as modern computing systems allow the manipu-
lation and distribution of massive amounts of information,
users of these systems are unable to manage the confiden-
tiality of their data in a practical fashion. Conventional
access control security mechanisms cannot prevent the il-
legitimate use of privileged data once access is granted.
For example, information provided by a user during an
online purchase may be covertly delivered to malicious
third parties by an untrustworthy web browser. Existing
information-flow security mechanisms do provide this as-
surance, but only for programmer-specified policies en-
forced during program development as a static analysis on
|
