Information flow analysis is a powerful technique for reasoning about sensitive information that may be exposed during program execution. One promising approach is to adopt a program as a communication channel model and leverage information theoretic metrics to quantify such information flows. However, recent research has shown discrepancies in such metrics: for example, Smith et. al. [5] showed examples wherein using the classical Shannon entropy measure for quantifying information flows may be counter-intuitive. Smith et. al. [5] proposed a vulnerability measure in an attempt to resolve this problem, and this measure was subsequently enhanced by Hamadou et. al. [2] into a beliefvulnerability metric. However, as pointed out by Smith et. al., the vulnerability metric fails to distinguish between certain classes of programs (such as the password checker and the binary search program). In this paper, we propose a simple and intuitive approach to quantify program information leakage as a probability distribution over the residual uncertainty of the high input whose mean, variance and worst case measures offer insights into program vulnerability.
[1]
J. Massey.
Guessing and entropy
,
1994,
Proceedings of 1994 IEEE International Symposium on Information Theory.
[2]
Richard W. Hamming,et al.
Error detecting and error correcting codes
,
1950
.
[3]
Vladimiro Sassone,et al.
Reconciling Belief and Vulnerability in Information Flow
,
2010,
2010 IEEE Symposium on Security and Privacy.
[4]
Ji Zhu,et al.
Quantifying Information Leakage in Finite Order Deterministic Programs
,
2011,
2011 IEEE International Conference on Communications (ICC).
[5]
Geoffrey Smith,et al.
On the Foundations of Quantitative Information Flow
,
2009,
FoSSaCS.
[6]
Michael R. Clarkson,et al.
Belief in information flow
,
2005,
18th IEEE Computer Security Foundations Workshop (CSFW'05).