{"id":19929282,"url":"https://github.com/gannimo/touchsafe","last_synced_at":"2025-03-01T11:19:19.240Z","repository":{"id":152740524,"uuid":"47280323","full_name":"gannimo/TouchSafe","owner":"gannimo","description":"TouchSafe: An Architecture for Enforcing Post-access Data Confidentiality for Unvetted Applications","archived":false,"fork":false,"pushed_at":"2015-12-02T23:39:06.000Z","size":24,"stargazers_count":1,"open_issues_count":0,"forks_count":2,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-01-12T01:14:12.485Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"C","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/gannimo.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2015-12-02T18:33:43.000Z","updated_at":"2015-12-20T20:05:25.000Z","dependencies_parsed_at":"2023-04-14T21:46:41.178Z","dependency_job_id":null,"html_url":"https://github.com/gannimo/TouchSafe","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gannimo%2FTouchSafe","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gannimo%2FTouchSafe/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gannimo%2FTouchSafe/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/gannimo%2FTouchSafe/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/gannimo","download_url":"https://codeload.github.com/gannimo/TouchSafe/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":241355446,"owners_count":19949363,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-12T22:42:25.433Z","updated_at":"2025-03-01T11:19:19.218Z","avatar_url":"https://github.com/gannimo.png","language":"C","readme":"# TouchSafe\n\n## Authors\n* Mathias Payer \u003cmathias.payer@nebelwelt.net\u003e\n* Pramod Jamkhedkar\n* Ruby Lee\n\n\n## Abstract\n\nUnvetted applications  are frequently used to process sensitive data. These applications may leak confidential,\nprivate, or sensitive data, after being given legitimate access to this data. The owner of the data would like\nto attach a policy to this data, and have this policy enforced throughout the data's lifetime. However, the\ndata owner does not have access to source code and is unable to modify third-party applications (or the\noperating system), nor does she have the resources for a code review.\n\nPrevious approaches to solve this problem typically involve fine-grained information flow tracking via either\n(i) additional hardware or (ii) computationally expensive software solutions. In contrast, we propose the\nTouchSafe architecture, which leverages a thin virtualization layer to enable the use of unvetted, unmodified\nthird-party applications on sensitive data, while enforcing initial access control and subsequent post-access\nusage and output control.\n\nWe demonstrate that TouchSafe (i) supports the secure use of sensitive data by arbitrary, unvetted\napplications, and (ii) enforces highly-efficient post-access output control at file-level granularity (per\napplication), without the need to modify or trust either the application or the operating system. TouchSafe has\nlow performance overhead for our implementation prototype, less than 0.5\\% on SPEC CPU2006.\n\n\n## Prototype\n\n* Version 0.2, 2015-12-02\n* Version 0.1, 2014-07-28\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgannimo%2Ftouchsafe","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fgannimo%2Ftouchsafe","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fgannimo%2Ftouchsafe/lists"}