Secure Refactoring with Java Information Flow

Refactoring means that a program is changed without changing its behaviour from an observer’s point of view. Does the change of behaviour also imply that the security of the program is not affected by the changes? Using Myers and Liskov’s distributed information flow control model DLM and its Java i...

Full description

Saved in:
Bibliographic Details
Published inData Privacy Management, and Security Assurance pp. 264 - 272
Main Authors Helke, Steffen, Kammüller, Florian, Probst, Christian W.
Format Book Chapter
LanguageEnglish
Published Cham Springer International Publishing
SeriesLecture Notes in Computer Science
Subjects
Access Control Policy
Code Block
Java Program
Secret Information
Security Property
Online AccessGet full text

Cover

More Information
Summary:Refactoring means that a program is changed without changing its behaviour from an observer’s point of view. Does the change of behaviour also imply that the security of the program is not affected by the changes? Using Myers and Liskov’s distributed information flow control model DLM and its Java implementation Jif, we explore this question practically on common patterns of Refactoring as known from Fowler. We first illustrate on an example the “Extract method” refactoring and how it can endanger confidentiality. We then show how to construct a secure version of this major refactoring pattern by employing Jif to control information flows. Finally, we can show that security leaks as encountered at the outset are not possible anymore.
ISBN:3319298828
9783319298825
ISSN:0302-9743
1611-3349
DOI:10.1007/978-3-319-29883-2_19