Making information flow explicit in HiStar

HiStar is a new operating system designed to minimize the amount of code that must be trusted. HiStar provides strict information flow control, which allows users to specify precise data security policies without unduly limiting the structure of applications. HiStar's security features make it possible to implement a Unix-like environment with acceptable performance almost entirely in an untrusted user-level library. The system has no notion of superuser and no fully trusted code other than the kernel. HiStar's features permit several novel applications, including an entirely untrusted login process, separation of data between virtual private networks, and privacy-preserving, untrusted virus scanners.

• Publication year

  2006

• Venue

  USENIX Symposium on Operating Systems Design and Implementation

• Publication date

  2006-11-06

• Fields of study

  Computer Science

• Identifiers
  DOI 10.1145/2018396.2018419
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• Securing Distributed Systems with Information Flow Control

  2008cited by this paper
• Hardware Enforcement of Application Security Policies Using Tagged Memory

  2008cited by this paper
• Information flow control for standard OS abstractions

  2007cited by this paper
• Fuss , Futexes and Furwocks : Fast Userlevel Locking in Linux Hubertus Franke IBM

  2005cited by this paper
• An Overview of the Singularity Project

  2005cited by this paper
• Make Least Privilege a Right (Not a Privilege)

  2005cited by this paper
• Labels and event processes in the asbestos operating system

  2005cited by this paper
• LOMAC: Low Water-Mark integrity protection for COTS environments

  2000cited by this paper
• Protecting privacy using the decentralized label model

  2000influential reference
• EROS: a fast capability system

  1999influential reference
• Plan 9 from Bell Labs (特集 ネットワ-クOS--これからの分散コンピュ-ティング)

  1996cited by this paper
• Scalability in the XFS File System

  1996influential reference
• The Spring Nucleus: A Microkemel for Objects

  1993cited by this paper
• Multilevel security in the UNIX tradition

  1992cited by this paper
• The KeyKOS Nanokernel Architecture

  1992influential reference
• The design and implementation of a log-structured file system

  1991cited by this paper
• Formal Models for Computer Security

  1981cited by this paper
• Integrity considerations for secure computer systems

  1977cited by this paper
• Integrity Considerations for Secure Computer Systems

  1977cited by this paper
• A lattice model of secure information flow

  1976cited by this paper
• Secure Computer System: Unified Exposition and Multics Interpretation

  1976cited by this paper
• A hardware architecture for implementing protection rings

  1972cited by this paper
• A hardware architecture for implementing protection rings

  1972influential reference
• Massachusetts Institute of Technology

  1964cited by this paper
• Proceedings of the Freenix Track: 2001 Usenix Annual Technical Conference Integrating Flexible Support for Security Policies into the Linux Operating System

  year unknowninfluential reference

• Towards Zero Trust Network Security via Programmable Data Planes

  2026cites this paper
• NaSh: Guardrails for an LLM-Powered Natural Language Shell

  2025cites this paper
• TracE2E: Easily Deployable Middleware for Decentralized Data Traceability

  2025cites this paper
• BPFflow - Preventing information leaks from eBPF

  2025cites this paper
• A Type System for Data Privacy Compliance in Active Object Languages

  2025cites this paper
• IOValve: Leakage-Free I/O Sandbox for Large-Scale Untrusted Data Processing

  2025cites this paper
• Practical Integrity Validation in the Smart Home with HomeEndorser

  2024cites this paper
• P4Control: Line-Rate Cross-Host Attack Prevention via In-Network Information Flow Control Enabled by Programmable Switches and eBPF

  2024cites this paper
• Cloud Security Using Fine-Grained Efficient Information Flow Tracking

  2024cites this paper
• HasTEE+ : Confidential Cloud Computing and Analytics with Haskell

  2024cites this paper
• Sesame: Practical End-to-End Privacy Compliance with Policy Containers and Privacy Regions

  2024cites this paper
• Formalization and Analysis of Aeolus-based File System from Process Algebra Perspective

  2024cites this paper
• ConfusedPilot: Confused Deputy Risks in RAG-based LLMs

  2024cites this paper
• Language-based Sandboxing

  2024cites this paper
• Decentralized Information-Flow Control for ROS2

  2024influential citation
• A Language for Smart Contracts with Secure Control Flow (Technical Report)

  2024cites this paper
• autoMPI: Automated Multiple Perspective Attack Investigation With Semantics Aware Execution Partitioning

  2023cites this paper
• Big Data Security through Privacy – Preserving Data Mining (PPDM): A Decentralization Approach

  2023cites this paper
• ASIFC: Auditable and Secure Information Flow Control for PaaS Cloud

  2023cites this paper
• Enabling Lightweight Privilege Separation in Applications with MicroGuards

  2023cites this paper
• Information Flow Tracking for Heterogeneous Compartmentalized Software

  2023cites this paper
• Tainted Secure Multi-Execution to Restrict Attacker Influence

  2023cites this paper
• Semantics for Noninterference with Interaction Trees (Artifact)

  2023cites this paper
• SysFlow: Toward a Programmable Zero Trust Framework for System Security

  2023cites this paper
• Transparent DIFC: Harnessing Innate Application Event Logging for Fine-Grained Decentralized Information Flow Control

  2022influential citation
• Secure Information Flow Typing in LUSTRE

  2022cites this paper
• Compositional Information Flow Monitoring for Reactive Programs

  2022cites this paper
• Analysis of the Expressive Power of DIFC Model Based on Temporal Logic

  2022cites this paper
• Challenges and Opportunities for Practical and Effective Dynamic Information Flow Tracking

  2021cites this paper
• Co-Inflow: Coarse-grained Information Flow Control for Java-like Languages

  2021cites this paper
• Automatic analysis of DIFC systems using noninterference with declassification

  2021influential citation
• Towards Practical Integrity in the Smart Home with HomeEndorser

  2021cites this paper
• Analyzing the Overhead of File Protection by Linux Security Modules

  2021cites this paper
• Dynamic Information Flow Tracking: Taxonomy, Challenges, and Opportunities

  2021cites this paper
• A Noninterference Model for Mobile OS Information Flow Control and Its Policy Verification

  2021cites this paper
• Compositional Security for Reentrant Applications

  2021cites this paper
• Information Flow Secure CAmkES

  2021cites this paper
• The Endokernel: Fast, Secure, and Programmable Subprocess Virtualization

  2021cites this paper
• Pifthon: A Compile-Time Information Flow Analyzer For An Imperative Language

  2021cites this paper
• Analyzing the Overhead of Filesystem Protection Using Linux Security Modules

  2021cites this paper
• Hardware Information Flow Tracking

  2021cites this paper
• Operating Systems & Virtualisation Security Knowledge Area Version

  2021cites this paper
• C^2SR: Cybercrime Scene Reconstruction for Post-mortem Forensic Analysis

  2021cites this paper
• SCIFFS: Enabling Secure Third-Party Security Analytics using Serverless Computing

  2021cites this paper
• AT-DIFC+: Toward Adaptive and Trust-Aware Decentralized Information Flow Control

  2021cites this paper
• Sirius: Enabling System-Wide Isolation for Trusted Execution Environments

  2020cites this paper
• Securing Asynchronous Exceptions

  2020cites this paper
• Dynamic Control Method for Tenants’ Sensitive Information Flow Based on Virtual Boundary Recognition

  2020cites this paper
• Towards Tracking Data Flows in Cloud Architectures

  2020cites this paper
• Adaptive Trust-Aware Decentralized Information Flow Control

  2020cites this paper
• Smartphone processor architecture, operations, and functions: current state-of-the-art and future outlook: energy performance trade-off

  2020cites this paper
• Reconciling progress-insensitive noninterference and declassification

  2020influential citation
• An ASP-Based Approach for Phase Balancing in Power Electrical Systems

  2020cites this paper
• $μ$Tiles: Efficient Intra-Process Privilege Enforcement of Memory Regions

  2020influential citation
• End-to-end information flow security for web services orchestration

  2020cites this paper
• LIO*: Low Level Information Flow Control in F

  2020cites this paper
• Privaros: A Framework for Privacy-Compliant Drones

  2020cites this paper
• Hey, my data are mine! Active data to empower the user

  2020cites this paper
• Secure Information Flow Connections

  2020cites this paper
• DBOS: A Proposal for a Data-Centric Operating System

  2020cites this paper
• A Polystore Based Database Operating System (DBOS)

  2020cites this paper
• Making Distributed Mobile Applications SAFE: Enforcing User Privacy Policies on Untrusted Applications with Secure Application Flow Enforcement

  2020cites this paper
• Beyond connected cars: A systems of systems perspective

  2020cites this paper
• Privaros: A Framework for Privacy-Compliant Delivery Drones

  2020cites this paper
• Enclave-Aware Compartmentalization and Secure Sharing with Sirius

  2020cites this paper
• Smartphone processor architecture, operations, and functions: current state-of-the-art and future outlook: energy performance trade-off

  2020cites this paper
• Content Analyzer for Information Leakage Detedction and Prevention in Android Smart Devices: A Conceptual Approach.

  2020cites this paper
• Information Flow Control to Secure Data in the Cloud

  2020cites this paper
• Security Types for Synchronous Data Flow Systems

  2020cites this paper
• HyShield: Enforcing Service Level Data Access Control with Data Tainting

  2019cites this paper
• Pyronia: Redesigning Least Privilege and Isolation for the Age of IoT

  2019cites this paper
• Operating Systems & Virtualisation Security Knowledge Area Issue

  2019cites this paper
• Employing attack graphs for intrusion detection

  2019cites this paper
• Pyronia: Intra-Process Access Control for IoT Applications

  2019cites this paper
• Cross-device access control with Trusted Capsules

  2019cites this paper
• LWeb: information flow security for multi-tier web applications

  2019cites this paper
• A note on verifying information flow control systems with Nickel

  2019influential citation
• Boomerang: Real-Time I/O Meets Legacy Systems

  2019cites this paper
• Virtual timeline: a formal abstraction for verifying preemptive schedulers with temporal isolation

  2019cites this paper
• On the expressiveness and semantics of information flow types

  2019cites this paper
• Using Information Flow to Design an ISA that Controls Timing Channels

  2019influential citation
• Foundations of Security, Protocols, and Equational Reasoning

  2019influential citation
• Composing Abstractions using the null-Kernel

  2019cites this paper
• A complete formal semantics of x86-64 user-level instruction set architecture

  2019cites this paper
• Programming with Flow-Limited Authorization: Coarser is Better

  2019cites this paper
• Foundations for Parallel Information Flow Control Runtime Systems

  2019cites this paper
• Only Connect, Securely

  2019cites this paper
• Reducing Security Risks of Suspicious Data and Codes Through a Novel Dynamic Defense Model

  2019cites this paper
• TPII: tracking personally identifiable information via user behaviors in HTTP traffic

  2019cites this paper
• An I/O Separation Model and its Applications to On-Demand I/O on Commodity Platforms

  2019cites this paper
• EnTrust: Regulating Sensor Access by Cooperating Programs via Delegation Graphs

  2019influential citation
• From fine- to coarse-grained dynamic information flow control and back

  2019influential citation
• A Verified Capability-Based Model for Information Flow Security With Dynamic Policies

  2018cites this paper
• Efficient Directory Mutations in a Full-Path-Indexed File System

  2018cites this paper
• An Application of Jeeves for Honeypot Sanitization Ashton

  2018cites this paper
• CapFlow: A Capability-Based DIFC System

  2018cites this paper
• DATS - Data Containers for Web Applications

  2018influential citation
• Vigilia: Securing Smart Home Edge Computing

  2018cites this paper
• Understanding and Combating Memory Bloat in Managed Data-Intensive Systems

  2018cites this paper
• Measuring and Computing Database Inconsistency via Repairs

  2018cites this paper