Information flow analysis by abstract interpretation
作者: Matteo Zanioli
DOI:
关键词: Static analysis 、 Suite 、 Information sensitivity 、 Heap (data structure) 、 Computer science 、 Theoretical computer science 、 Java 、 Abstract interpretation 、 Information leakage 、 Granularity
摘要: Protecting the confidentiality of information stored in a computer system or transmitted over public network is relevant problem security. The goal this thesis to provide both theoretical and experimental results towards design an flow analysis for automatic verification absence sensitive leakage. Our approach based on Abstract Interpretation, theory sound approximation program semantics. We track dependencies among program’s variables using propositional formulae, namely Pos domain. study main ways improve accuracy (by combination abstract domains) efficiency widening narrowing operators) analysis. reduced product logical domain suitable numerical domains yields strictly more accurate with respect ones already literature. modular construction our allows deal trade-off between by tuning granularity abstraction complexity operators. Finally, we introduce Sails, new tool mainstream languages like Java, that does not require any manual annotation. Sails combines leakage different heap abstractions, inferring programs dealing complex data structures too. applied SecuriBench-micro suite preliminary outline effectiveness approach.
参考文章(142)
Arnaud Venet, Abstract Cofibered Domains: Application to the Alias Analysis of Untyped Programs static analysis symposium. pp. 366- 382 ,(1996) , 10.1007/3-540-61739-6_53
Luca Cardelli, Martin Abadi, A Theory of Objects ,(1996)
Flemming Nielson, Chris Hankin, Hanne R. Nielson, Principles of program analysis ,(1999)
Trace-Based Abstract Interpretation of Operational Semantics Lisp and Symbolic Computation archive. ,vol. 10, pp. 237- 271 ,(1998) , 10.1023/A:1007734417713
Philippe Granger, Improving the Results of Static Analyses Programs by Local Decreasing Iteration foundations of software technology and theoretical computer science. pp. 68- 79 ,(1992) , 10.1007/3-540-56287-7_95
Patrick Cousot, Radhia Cousot, Comparing the Galois Connection and Widening/Narrowing Approaches to Abstract Interpretation international symposium on programming language implementation and logic programming. pp. 269- 295 ,(1992) , 10.1007/3-540-55844-6_142
Roberto Giacobazzi, Isabella Mastroeni, Adjoining Declassification and Attack Models by Abstract Interpretation Programming Languages and Systems. pp. 295- 310 ,(2005) , 10.1007/978-3-540-31987-0_21
Roberto Bagnara, Patricia M. Hill, Elena Mazzi, Enea Zaffanella, Widening Operators for Weakly-Relational Numeric Abstractions Static Analysis. pp. 3- 18 ,(2005) , 10.1007/11547662_3
Pietro Ferrara, Static type analysis of pattern matching by abstract interpretation formal methods for open object based distributed systems. ,vol. 6117, pp. 186- 200 ,(2010) , 10.1007/978-3-642-13464-7_15
Shashi Mohan Srivastava, A Course on Mathematical Logic ,(2008)