TightLip: Keeping Applications from Spilling the Beans

  title={TightLip: Keeping Applications from Spilling the Beans},
  author={Aydan R. Yumerefendi and Benjamin Mickle and Landon P. Cox},
Access control misconfigurations are widespread and can result in damaging breaches of confidentiality. This paper presents TightLip, a privacy management system that helps users define what data is sensitive and who is trusted to see it rather than forcing them to understand or predict how the interactions of their software packages can leak data. The key mechanism used by TightLip to detect and prevent breaches is the doppelganger process. Doppelgangers are sandboxed copy processes that… CONTINUE READING
Highly Cited
This paper has 122 citations. REVIEW CITATIONS


Publications citing this paper.
Showing 1-10 of 81 extracted citations

Proactive obfuscation

ACM Trans. Comput. Syst. • 2010
View 5 Excerpts
Highly Influenced

Privacy oracle: a system for finding application leaks with black box differential testing

ACM Conference on Computer and Communications Security • 2008
View 6 Excerpts
Highly Influenced

Debugging the data plane with anteater

SIGCOMM • 2011
View 4 Excerpts
Highly Influenced

122 Citations

Citations per Year
Semantic Scholar estimates that this publication has 122 citations based on the available data.

See our FAQ for additional information.


Publications referenced by this paper.
Showing 1-10 of 36 references

RIFLE: An Architectural Framework for User-Centric Information-Flow Security

37th International Symposium on Microarchitecture (MICRO-37'04) • 2004
View 7 Excerpts
Highly Influenced

A General Dynamic Information Flow Tracking Framework for Security Applications

2006 22nd Annual Computer Security Applications Conference (ACSAC'06) • 2006
View 3 Excerpts

CIO Jury: IT Bosses Ban Google Desktop Over Security Fears

A. McCue
silicon.com, March 2 • 2006
View 3 Excerpts

ChoicePoint Fined $15m Over Data Security Breach

J. Leyden
The Register, January 27 • 2006
View 1 Excerpt

HK Police Complaints Data Leak Puts City on Edge

J. Leyden
The Register, March 28 • 2006
View 2 Excerpts

InfoShield: a security architecture for protecting information usage in memory

The Twelfth International Symposium on High-Performance Computer Architecture, 2006. • 2006
View 2 Excerpts

Similar Papers

Loading similar papers…