分岐命令の分岐成立・不成立の回数に着目した情報フロー追跡(信頼性とセキュリティ,SWoPP佐賀2008-2008年並列/分散/協調処理に関する『佐賀』サマー・ワークショップ)  [in Japanese] Information Flow Tracking based on Numbers of Taken and Untaken Branches  [in Japanese]

Abstract

個人情報や企業の機密情報のような重要な情報の漏洩を防止するため,プログラム実行時に発生する情報フローをプロセッサが追跡・制御する手法がある.しかし,分岐命令を含む情報フローの追跡は難しく,安全性を維持しながら利便性の高い追跡手法はこれまで知られていない.本論文では分岐命令の成立・不成立の回数に着目した情報フロー追跡について提案する.提案手法により,true negativeを維持し,false positiveを減少させることができることを例を用いて示す.

Personal and business computers storing confidential information are often connected to potentially hostile networks. Information flow security systems prevent applications from leaking this information without explicit authorization from the data owner. Dynamic information tracking is a promising platform for such systems. However, tracking the information flow including branches is difficult, and no accurate method for tracking such control flows is not known currently. We propose an information flow tracking scheme focusing on numbers of taken and untaken branches. Application of the proposed method to several attack example codes revealed that it enables us to reduce true positives in tracking control flows without increasing false negatives.

Journal

IEICE technical report. Dependable computing   [List of Volumes]

IEICE technical report. Dependable computing 108(181), 17-22, 2008-07-29  [Table of Contents]

The Institute of Electronics, Information and Communication Engineers

References:  10

You must have a user ID to see the references.If you already have a user ID, please click "Login" to access the info.New users can click "Sign Up" to register for an user ID.

Preview

Preview

Codes

  • NII Article ID (NAID) :
    110007004795
  • NII NACSIS-CAT ID (NCID) :
    AA11645397
  • Text Lang :
    JPN
  • Article Type :
    ART
  • ISSN :
    09135685
  • NDL Article ID :
    9640288
  • NDL Source Classification :
    ZN33(科学技術--電気工学・電気機械工業--電子工学・電気通信)
  • NDL Call No. :
    Z16-940
  • Databases :
    CJP  NDL  NII-ELS