Expand description
Opaque labeled values for information-flow style data handling.
This module adapts the central idea of SecLib’s Sec s a container to the
typesec capability model. Sensitive data can be transformed while it stays
inside SecureValue, but extracting or declassifying it requires an
explicit typed capability.
Structs§
- Internal
- Internal data: not public, but below sensitive and secret data.
- Public
- Public data: safe to reveal without a capability.
- Secret
- Secret data such as credentials or highly restricted model inputs.
- Secure
Value - Data protected by a type-level privacy label and resource type.
- Sensitive
- Sensitive data such as PII or confidential business records.
Traits§
- Join
- Type-level least upper bound for two privacy labels.
- Privacy
Level - A type-level privacy label.