A label-based information flow control model for object-oriented systems

This paper proposes a label-based information flow control model to prevent information leakage within object-oriented systems. It offers the features of: (a) adapting to dynamic object state change, (b) adapting to dynamic role change, (c) preventing indirect information leakage, (d) detailing the control granularity to variables, (e) allowing purpose-oriented method invocation, (f) controlling method invocation through argument sensitivity, (g) allowing declassification, and (h) allowing only trusted sources to write a variable.