Abstract : Novel approaches for dynamic information flow monitoring are promising since they enable permissive (accepting a large subset of executions) yet sound (rejecting all insecure executions) enforcement of non-interference. In this paper, we present a dynamic information flow monitor for a language supporting pointers. Our flow-sensitive monitor relies on prior static analysis in order to soundly enforce non-interference. We also propose a program transformation that preserves the behavior of initial programs and soundly inlines our security monitor. This program transformation enables both dynamic and static verification of non-interference.
https://hal.inria.fr/hal-00814671 Contributor : Hal IfipConnect in order to contact the contributor Submitted on : Friday, February 10, 2017 - 11:46:39 AM Last modification on : Thursday, February 17, 2022 - 10:08:03 AM Long-term archiving on: : Thursday, May 11, 2017 - 1:00:19 PM
Mounir Assaf, Julien Signoles, Frédéric Tronel, Eric Totel. Program Transformation for Non-interference Verification on Programs with Pointers. 28th Security and Privacy Protection in Information Processing Systems (SEC), Jul 2013, Auckland, New Zealand. pp.231-244, ⟨10.1007/978-3-642-39218-4_18⟩. ⟨hal-00814671v2⟩