A Theorem Proving Approach to Analysis of Secure Information Flow

14 years 5 months ago

Download www.cse.chalmers.se

Abstract. Most attempts at analysing secure information ﬂow in programs are based on domain-speciﬁc logics. Though computationally feahese approaches suﬀer from the need for abstraction and the high cost of building dedicated tools for real programming languages. We recast the information ﬂow problem in a general program logic rather than a problem-speciﬁc one. We investigate the feasibility of this approach by showing how a general purpose tool for software veriﬁcation can be used to perform information ﬂow analyses. We are able to prove security and insecurity of programs including advanced features such as method calls, loops, and object types for the target language Java Card. In addition, we can express declassiﬁcation of information.

Ádám Darvas, Reiner Hähnle, Dav

Real-time Traffic

Applied Computing | General Program Logic | Information ﬂow Problem | Real Programming Languages | SPC 2005 |

claim paper

Post Info
More Details (n/a)

Added	28 Jun 2010
Updated	28 Jun 2010
Type	Conference
Year	2005
Where	SPC
Authors	Ádám Darvas, Reiner Hähnle, David Sands

Comments (0)

Sciweavers

A Theorem Proving Approach to Analysis of Secure Information Flow

Applied Computing | General Program Logic | Information ﬂow Problem | Real Programming Languages | SPC 2005 |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers