A Type System for Data-Flow Integrity on Windows Vista

Details A Type System for Data-Flow Integrity on Windows Vista A Type System for Data-Flow Integrity on Windows Vista

2008-03-21

arxiv.org/abs/0803.3230v2

Computer Science

Cryptography and Security

Scientific paper

The Windows Vista operating system implements an interesting model of multi-level integrity. We observe that in this model, trusted code can be blamed for any information-flow attack; thus, it is possible to eliminate such attacks by static analysis of trusted code. We formalize this model by designing a type system that can efficiently enforce data-flow integrity on Windows Vista. Typechecking guarantees that objects whose contents are statically trusted never contain untrusted values, regardless of what untrusted code runs in the environment. Some of Windows Vista's runtime access checks are necessary for soundness; others are redundant and can be optimized away.

Affiliated with

Also associated with

No associations

Rating

A Type System for Data-Flow Integrity on Windows Vista does not yet have a rating. At this time, there are no reviews or comments for this scientific paper.

If you have personal experience with A Type System for Data-Flow Integrity on Windows Vista, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and A Type System for Data-Flow Integrity on Windows Vista will most certainly appreciate the feedback.

Rate now

Comments { 0 }

Profile ID: LFWR-SCP-O-596728