Learn More
If we classify the variables of a program into various security levels, then a <i>secure information flow analysis</i> aims to verify statically that information in the program can flow only in ways consistent with the specified security levels. To make such analysis more practical, this paper proposes a novel type inference approach that gives programmers(More)
Our goal in this paper is to make secure information flow typing more practical. We propose simple and permissive typing rules for array operations in a simple sequential imperative language. Arrays are given types of the form /spl tau//sub 1/ arr /spl tau//sub 2/, where /spl tau//sub 1/ is the security class of the array's contents and /spl tau//sub 2/ is(More)
  • 1