CPL - Chalmers Publication Library
| Utbildning | Forskning | Styrkeområden | Om Chalmers | In English In English Ej inloggad.

Functional pearl: Two can keep a secret, if one of them uses Haskell

Alejandro Russo (Institutionen för data- och informationsteknik, Programvaruteknik (Chalmers))
ACM Sigplan Notices. 20th ACM SIGPLAN International Conference on Functional Programming (ICFP) (0362-1340). Vol. 50 (2015), 9, p. 280-288.
[Konferensbidrag, refereegranskat]

For several decades, researchers from different communities have independently focused on protecting confidentiality of data. Two distinct technologies have emerged for such purposes: Mandatory Access Control (MAC) and Information-Flow Control (IFC)—the former belonging to operating systems (OS) research, while the latter to the programming languages community. These approaches restrict how data gets propagated within a system in order to avoid information leaks. In this scenario, Haskell plays a unique privileged role: it is able to protect confidentiality via libraries. This pearl presents a monadic API which statically protects confidentiality even in the presence of advanced features like exceptions, concurrency, and mutable data structures. Additionally, we present a mechanism to safely extend the library with new primitives, where library designers only need to indicate the read and write effects of new operations.

Nyckelord: mandatory access control, information-flow control, security, library



Den här publikationen ingår i följande styrkeområden:

Läs mer om Chalmers styrkeområden  

Denna post skapades 2015-06-24. Senast ändrad 2016-10-07.
CPL Pubid: 218754

 

Läs direkt!


Länk till annan sajt (kan kräva inloggning)