Information Flow Tracking System with Container-Based Virtualization
The information flow tracking system has been investigated as a method for detecting and preventing attacks against application vulnerabilities. Decentralized information flow control (DIFC) technology has been proposed as an access control technology which uses information flow tracking. It is also known to be effective in detecting and preventing vulnerabilities. However, widespread adoption of this method is difficult due to the need to use a proprietary operating system (OS). In this study, we aim to implement DIFC in a container-based runtime environment, allowing for a DIFC system that can be easily integrated into existing systems.