@inproceedings{3b0a6c43960f45fba57df7d4e59a8107,
title = "Declarative policies for capability control",
abstract = "In capability-safe languages, components can access a resource only if they possess a capability for that resource. As a result, a programmer can prevent an untrusted component from accessing a sensitive resource by ensuring that the component never acquires the corresponding capability. In order to reason about which components may use a sensitive resource it is necessary to reason about how capabilities propagate through a system. This may be difficult, or, in the case of dynamically composed code, impossible to do before running the system. To counter this situation, we propose extensions to capability-safe languages that restrict the use of capabilities according to declarative policies. We introduce two independently useful semantic security policies to regulate capabilities and describe language-based mechanisms that enforce them. Access control policies restrict which components may use a capability and are enforced using higher-order contracts. Integrity policies restrict which components may influence (directly or indirectly) the use of a capability and are enforced using an information-flow type system. Finally, we describe how programmers can dynamically and soundly combine components that enforce access control or integrity policies with components that enforce different policies or even no policy at all.",
keywords = "Capabilities, Capability policies, Information-flow control, Language-based security",
author = "Christos Dimoulas and Scott Moore and Aslan Askarov and Stephen Chong",
note = "Publisher Copyright: {\textcopyright} 2014 IEEE.; 27th IEEE Computer Security Foundations Symposium, CSF 2014 ; Conference date: 19-07-2014 Through 22-07-2014",
year = "2014",
month = nov,
day = "13",
doi = "10.1109/CSF.2014.9",
language = "English (US)",
series = "Proceedings of the Computer Security Foundations Workshop",
publisher = "IEEE Computer Society",
pages = "3--17",
booktitle = "Proceedings - 2014 IEEE 27th Computer Security Foundations Symposium, CSF 2014",
address = "United States",
}