Noninterference via Symbolic Execution

Dimiter Milushev 1, 2 Wim Beck 2, 1 Dave Clarke 2, 1
2 KU-IBBT - FUTURE HEALTH DEPARTMENT [KU Leuven]
KU Leuven - Catholic University of Leuven - Katholieke Universiteit Leuven
Abstract : Noninterference is a high-level security property that guarantees the absence of illicit information flow at runtime. Noninterference can be enforced statically using information flow type systems; however, these are criticized for being overly conservative and rejecting secure programs. More precision can be achieved by using program logics, but such an approach lacks its own verification tools. In this work we propose a novel, alternative approach: utilizing symbolic execution in combination with ideas from program logics in an attempt to increase the precision of analyses and automate noninterference testing. Dealing with policies incorporating declassification is also explored. The feasibility of the proposal is illustrated using a prototype tool based on the KLEE symbolic execution engine.
Liste complète des métadonnées

Cited literature [22 references]  Display  Hide  Download

https://hal.inria.fr/hal-01528732
Contributor : Hal Ifip <>
Submitted on : Monday, May 29, 2017 - 3:53:57 PM
Last modification on : Thursday, February 21, 2019 - 10:31:47 AM
Document(s) archivé(s) le : Wednesday, September 6, 2017 - 11:26:40 AM

File

978-3-642-30793-5_10_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Dimiter Milushev, Wim Beck, Dave Clarke. Noninterference via Symbolic Execution. 14th International Conference on Formal Methods for Open Object-Based Distributed Systems (FMOODS) / 32nd International Conference on Formal Techniques for Networked and Distributed Systems (FORTE), Jun 2012, Stockholm, Sweden. pp.152-168, ⟨10.1007/978-3-642-30793-5_10⟩. ⟨hal-01528732⟩

Share

Metrics

Record views

115

Files downloads

66