ETAPS 2019
Sat 6 - Thu 11 April 2019 Prague, Czech Republic
Thu 11 Apr 2019 10:30 - 11:00 at MOON - Covert Channels and Information Flow

We present the foundations for a new dynamic information flow control (IFC) parallel runtime system, LIOPAR. To our knowledge, LIOPAR is the first dynamic language-level IFC system to (1) support parallel thread execution and (2) eliminate both internal- and external-timing covert channels that exploit the runtime system. Most existing IFC systems are vulnerable to external timing attacks because they are built atop vanilla runtime systems that do not account for security—these runtime systems allocate and reclaim shared resources, e.g., CPU-time and memory, fairly between threads at different security levels. While such attacks have largely been ignored—or, at best, mitigated—we demonstrate that extending IFC systems with parallelism leads to the internalization of these attacks. Our IFC runtime system design addresses these concerns by hiearchically managing resources— both CPU-time and memory—and making resource allocation and reclamation explicit at the language-level. We prove that LIOPAR is secure, i.e., it satisfies progress-and-time sensitive non-interference, even when exposing clock and heap-statistics APIs.

Thu 11 Apr
Times are displayed in time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change

10:30 - 12:30
Covert Channels and Information FlowPOST at MOON
10:30
30m
Talk
Foundations for Parallel Information Flow Control Runtime Systems
POST
Marco VassenaChalmers University of Technology, Gary Soeller, Peter Amidon, Matthew Chan, John RennerUniversity of California, San Diego, Deian StefanUniversity of California San Diego
Link to publication
11:00
30m
Talk
A Formal Analysis of Timing Channel Security via Bucketing
POST
Tachio TerauchiWaseda University, Timos AntonopoulosYale University
Link to publication
11:30
30m
Talk
A Dependently Typed Library for Static Information-Flow Control in Idris
POST
Simon Oddershede GregersenAarhus University, Søren Eller ThomsenAarhus University, Aslan AskarovAarhus University
Link to publication
12:00
30m
Talk
Achieving Safety Incrementally with Checked C
POST
Andrew Ruef, Leonidas LampropoulosUniversity of Pennsylvania, Ian Sweet, David Tarditi, Michael HicksUniversity of Maryland, College Park
Link to publication