{"id":"https://openalex.org/W4312499531","doi":"https://doi.org/10.1109/csf54842.2022.9919690","title":"IFCIL: An Information Flow Configuration Language for SELinux","display_name":"IFCIL: An Information Flow Configuration Language for SELinux","publication_year":2022,"publication_date":"2022-08-01","ids":{"openalex":"https://openalex.org/W4312499531","doi":"https://doi.org/10.1109/csf54842.2022.9919690"},"language":"en","primary_location":{"id":"doi:10.1109/csf54842.2022.9919690","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csf54842.2022.9919690","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE 35th Computer Security Foundations Symposium (CSF)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5082476880","display_name":"Lorenzo Ceragioli","orcid":"https://orcid.org/0000-0002-1288-9623"},"institutions":[{"id":"https://openalex.org/I108290504","display_name":"University of Pisa","ror":"https://ror.org/03ad39j10","country_code":"IT","type":"education","lineage":["https://openalex.org/I108290504"]}],"countries":["IT"],"is_corresponding":true,"raw_author_name":"Lorenzo Ceragioli","raw_affiliation_strings":["Universit&#x00E0; di Pisa,Italy"],"affiliations":[{"raw_affiliation_string":"Universit&#x00E0; di Pisa,Italy","institution_ids":["https://openalex.org/I108290504"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5043354136","display_name":"Letterio Galletta","orcid":"https://orcid.org/0000-0003-0351-9169"},"institutions":[{"id":"https://openalex.org/I4210152452","display_name":"Consorzio Interuniversitario Nazionale per l'Informatica","ror":"https://ror.org/03v8v5y65","country_code":"IT","type":"facility","lineage":["https://openalex.org/I4210152452"]},{"id":"https://openalex.org/I127077003","display_name":"IMT School for Advanced Studies Lucca","ror":"https://ror.org/035gh3a49","country_code":"IT","type":"education","lineage":["https://openalex.org/I127077003"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Letterio Galletta","raw_affiliation_strings":["IMT School for Advanced Studies Lucca,Italy","CINI Cybersecurity National Laboratory, Rome, Italy","IMT School for Advanced Studies Lucca, Italy"],"affiliations":[{"raw_affiliation_string":"IMT School for Advanced Studies Lucca,Italy","institution_ids":["https://openalex.org/I127077003"]},{"raw_affiliation_string":"CINI Cybersecurity National Laboratory, Rome, Italy","institution_ids":["https://openalex.org/I4210152452"]},{"raw_affiliation_string":"IMT School for Advanced Studies Lucca, Italy","institution_ids":["https://openalex.org/I127077003"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5055365661","display_name":"Pierpaolo Degano","orcid":"https://orcid.org/0000-0002-8070-4838"},"institutions":[{"id":"https://openalex.org/I108290504","display_name":"University of Pisa","ror":"https://ror.org/03ad39j10","country_code":"IT","type":"education","lineage":["https://openalex.org/I108290504"]},{"id":"https://openalex.org/I127077003","display_name":"IMT School for Advanced Studies Lucca","ror":"https://ror.org/035gh3a49","country_code":"IT","type":"education","lineage":["https://openalex.org/I127077003"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Pierpaolo Degano","raw_affiliation_strings":["Universit&#x00E0; di Pisa,Italy","IMT School for Advanced Studies Lucca, Italy"],"affiliations":[{"raw_affiliation_string":"Universit&#x00E0; di Pisa,Italy","institution_ids":["https://openalex.org/I108290504"]},{"raw_affiliation_string":"IMT School for Advanced Studies Lucca, Italy","institution_ids":["https://openalex.org/I127077003"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5025344654","display_name":"David Basin","orcid":"https://orcid.org/0000-0003-2952-939X"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"David Basin","raw_affiliation_strings":["ETH Zurich,Switzerland","ETH Zurich, Switzerland"],"affiliations":[{"raw_affiliation_string":"ETH Zurich,Switzerland","institution_ids":["https://openalex.org/I35440088"]},{"raw_affiliation_string":"ETH Zurich, Switzerland","institution_ids":["https://openalex.org/I35440088"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5082476880"],"corresponding_institution_ids":["https://openalex.org/I108290504"],"apc_list":null,"apc_paid":null,"fwci":0.2651,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.625996,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":"2404","issue":null,"first_page":"243","last_page":"259"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9965000152587891,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.9865999817848206,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.842283308506012},{"id":"https://openalex.org/keywords/mandatory-access-control","display_name":"Mandatory access control","score":0.7318706512451172},{"id":"https://openalex.org/keywords/information-flow","display_name":"Information flow","score":0.5893937349319458},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.5885850191116333},{"id":"https://openalex.org/keywords/security-policy","display_name":"Security policy","score":0.5716806650161743},{"id":"https://openalex.org/keywords/confidentiality","display_name":"Confidentiality","score":0.47710686922073364},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.45774075388908386},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.4454779624938965},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.43144896626472473},{"id":"https://openalex.org/keywords/role-based-access-control","display_name":"Role-based access control","score":0.10714173316955566}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.842283308506012},{"id":"https://openalex.org/C2777407602","wikidata":"https://www.wikidata.org/wiki/Q1888932","display_name":"Mandatory access control","level":4,"score":0.7318706512451172},{"id":"https://openalex.org/C2779136372","wikidata":"https://www.wikidata.org/wiki/Q10283002","display_name":"Information flow","level":2,"score":0.5893937349319458},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.5885850191116333},{"id":"https://openalex.org/C154908896","wikidata":"https://www.wikidata.org/wiki/Q2167404","display_name":"Security policy","level":2,"score":0.5716806650161743},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.47710686922073364},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.45774075388908386},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.4454779624938965},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.43144896626472473},{"id":"https://openalex.org/C45567728","wikidata":"https://www.wikidata.org/wiki/Q1702839","display_name":"Role-based access control","level":3,"score":0.10714173316955566},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/csf54842.2022.9919690","is_oa":false,"landing_page_url":"https://doi.org/10.1109/csf54842.2022.9919690","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE 35th Computer Security Foundations Symposium (CSF)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.49000000953674316,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":26,"referenced_works":["https://openalex.org/W154231405","https://openalex.org/W1489391022","https://openalex.org/W1585890653","https://openalex.org/W1966354044","https://openalex.org/W1972532809","https://openalex.org/W1977764760","https://openalex.org/W1982470463","https://openalex.org/W2061056245","https://openalex.org/W2088480117","https://openalex.org/W2094873755","https://openalex.org/W2112561088","https://openalex.org/W2116860113","https://openalex.org/W2122049982","https://openalex.org/W2135870733","https://openalex.org/W2158126684","https://openalex.org/W2405120356","https://openalex.org/W2524423996","https://openalex.org/W2617413542","https://openalex.org/W2725468844","https://openalex.org/W2903201009","https://openalex.org/W3013345605","https://openalex.org/W3046976810","https://openalex.org/W4281658590","https://openalex.org/W6606257881","https://openalex.org/W6629085924","https://openalex.org/W6714048833"],"related_works":["https://openalex.org/W2158881272","https://openalex.org/W2350594541","https://openalex.org/W2295582286","https://openalex.org/W2539425047","https://openalex.org/W2148952798","https://openalex.org/W2770657926","https://openalex.org/W2105261429","https://openalex.org/W2393973626","https://openalex.org/W2012419258","https://openalex.org/W318167434"],"abstract_inverted_index":{"Security":[0],"Enhanced":[1],"Linux":[2,9],"(SELinux)":[3],"is":[4,30],"a":[5,84,113],"security":[6,34],"architecture":[7],"for":[8,67,90,96],"implementing":[10],"mandatory":[11],"access":[12],"control.":[13],"It":[14],"has":[15],"been":[16],"used":[17],"in":[18],"numerous":[19],"security-critical":[20],"contexts":[21],"ranging":[22],"from":[23],"servers":[24],"to":[25,38,50,59,115],"mobile":[26],"devices.":[27],"But":[28],"this":[29],"challenging":[31],"as":[32],"SELinux":[33],"policies":[35],"are":[36],"difficult":[37],"write,":[39],"understand,":[40],"and":[41,58,107],"maintain.":[42],"Recently,":[43],"the":[44,52,70],"intermediate":[45],"language":[46],"CIL":[47,64,89,97],"was":[48],"introduced":[49],"foster":[51],"development":[53],"of":[54,88],"high-level":[55],"policy":[56],"languages":[57],"write":[60],"structured":[61],"configurations.":[62,98],"However,":[63],"lacks":[65],"mechanisms":[66],"ensuring":[68],"that":[69],"resulting":[71],"configurations":[72],"obey":[73],"desired":[74],"information":[75,93],"flow":[76,94],"policies.":[77],"To":[78],"remedy":[79],"this,":[80],"we":[81],"propose":[82],"IFCIL,":[83,100],"backward":[85],"compatible":[86],"extension":[87],"specifying":[91],"fine-grained":[92],"requirements":[95],"Using":[99],"administrators":[101],"can":[102],"express,":[103],"e.g.,":[104],"confidentiality,":[105],"integrity,":[106],"non-interference":[108],"properties.":[109],"We":[110],"also":[111],"provide":[112],"tool":[114],"statically":[116],"verify":[117],"these":[118],"requirements.":[119]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}