Analysis and Implementation Method of Program to Detect Inappropriate Information Leak

Hong Kong December 10-December 11

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/APAQS.2001.989996

Second Asia-Pacific Conference on Qua ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by R. Yokomori Articles by F. Ohata Articles by Y. Takata Articles by H. Seki Articles by K. Inoue

	ASCII Text	x
	R. Yokomori, F. Ohata, Y. Takata, H. Seki, K. Inoue, "Analysis and Implementation Method of Program to Detect Inappropriate Information Leak," Asia-Pacific Conference on Quality Software, pp. 0005, Second Asia-Pacific Conference on Quality Software (APAQS'01), 2001.

	BibTex	x
	@article{ 10.1109/APAQS.2001.989996, author = {R. Yokomori and F. Ohata and Y. Takata and H. Seki and K. Inoue}, title = {Analysis and Implementation Method of Program to Detect Inappropriate Information Leak}, journal ={Asia-Pacific Conference on Quality Software}, volume = {0}, year = {2001}, isbn = {0-7695-1287-9}, pages = {0005}, doi = {http://doi.ieeecomputersociety.org/10.1109/APAQS.2001.989996}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Asia-Pacific Conference on Quality Software TI - Analysis and Implementation Method of Program to Detect Inappropriate Information Leak SN - 0-7695-1287-9 SP EP A1 - R. Yokomori, A1 - F. Ohata, A1 - Y. Takata, A1 - H. Seki, A1 - K. Inoue, PY - 2001 VL - 0 JA - Asia-Pacific Conference on Quality Software ER -

R. Yokomori, Osaka University

F. Ohata, Osaka University

Y. Takata, Nana Institute of Science and Technology

H. Seki, Nana Institute of Science and Technology

K. Inoue, Osaka University

For a program which handles secret information, it is very important to prevent inappropriate information leak from the program with secret data. Denning proposed a mechanism to certify a security of program by statically analyzing information flow, and Kuninobu proposed a more practical analysis framework including recursive procedure handling, although no implementation has been yet made.

In this paper, we propose a method of security analysis implementation, and show a security analysis tool implemented for a procedural language. In this work, we extend Kuninobu?s algorithm by devising various techniques for analysis of practical programs that have recursive calls and global variables. This method is validated by applying our tools to a simple credit car program, and we confirm that validation of program security is very useful.

Citation:

R. Yokomori, F. Ohata, Y. Takata, H. Seki, K. Inoue, "Analysis and Implementation Method of Program to Detect Inappropriate Information Leak," apaqs, pp.0005, Second Asia-Pacific Conference on Quality Software (APAQS'01), 2001

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.