Cryptographically Secure Information Flow Control on Key-Value Stores
| Title | Cryptographically Secure Information Flow Control on Key-Value Stores |
| Publication Type | Conference Paper |
| Year of Publication | 2017 |
| Authors | Waye, Lucas, Buiras, Pablo, Arden, Owen, Russo, Alejandro, Chong, Stephen |
| Conference Name | Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-4946-8 |
| Keywords | cryptography, digital signatures, Human Behavior, information-flow control, Key Management, Metrics, pubcrawl, resilience, Resiliency, Scalability |
| Abstract | We present Clio, an information flow control (IFC) system that transparently incorporates cryptography to enforce confidentiality and integrity policies on untrusted storage. Clio insulates developers from explicitly manipulating keys and cryptographic primitives by leveraging the policy language of the IFC system to automatically use the appropriate keys and correct cryptographic operations. We prove that Clio is secure with a novel proof technique that is based on a proof style from cryptography together with standard programming languages results. We present a prototype Clio implementation and a case study that demonstrates Clio's practicality. |
| URL | http://doi.acm.org/10.1145/3133956.3134036 |
| DOI | 10.1145/3133956.3134036 |
| Citation Key | waye_cryptographically_2017 |