摘要 |
A controlled system (110, 120) performs internal taint tracking of data items. When a data item is created, the controlled system computes (202) a name and a taint for the data item and performs (204) an initialization function, thus informing a tracking entity (130) that of the name and data of the data item. The taint is propagated to further data items, while the name may change, and when a data item is exported to (210) or imported from a further device, the controlled system informs (216; 224; 232) the tracking entity (130) of the name and taint of the exported or imported data item as well as its source and destination. A controlled system (110, 120) may request (236) a propagation history from the tracking entity (130). As the tracking entity (130) is shared by more than one controlled system (110, 120), it is possible to perform taint tracking across controlled systems even if these do not use the same taint tracking framework. |