Unifying Confidentiality and Integrity in Downgrading Policies

  title={Unifying Confidentiality and Integrity in Downgrading Policies},
  author={Peng Li and Steve Zdancewic},
Confidentiality and integrity are often treated as dual prop e ties in formal models of information-flow control, access control and many other areas in computer securi ty. However, in contrast to confidentiality policies, integrity policies are less formally studied in the informa tion-flow control literature. One important reason is that traditional noninterference-based information-flow control approaches give very weak integrity guarantees for untrusted code. Integrity and confidentiality… CONTINUE READING