Spot the Difference: Secure Multi-Execution and Multiple Facets

Nataliia Bielova 1 Tamara Rezk 1
1 INDES - Secure Diffuse Programming
CRISAM - Inria Sophia Antipolis - Méditerranée
Abstract : We propose a rigorous comparison of two widely known dynamic information flow mechanisms: Secure Multi-Execution (SME) and Multiple Facets (MF). Informally, it is believed that MF simulates SME while providing better performance. Formally, it is well known that SME has stronger soundness guarantees than MF. Surprisingly, we discover that even if we approach them to enforce the same soundness guarantees, they are still different. While modeling them in the same language, we are able to precisely identify the features of the semantics that lead to their differences. In the process of comparing them, we also discovered four new mechanisms that share features of MF and SME. We prove that one of them simulates SME, which was falsely believed to be true for MF.
Liste complète des métadonnées

Cited literature [28 references]  Display  Hide  Download

https://hal.inria.fr/hal-01348192
Contributor : Nataliia Bielova <>
Submitted on : Friday, July 22, 2016 - 3:29:35 PM
Last modification on : Thursday, January 11, 2018 - 4:47:56 PM

File

main.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-01348192, version 1

Collections

Citation

Nataliia Bielova, Tamara Rezk. Spot the Difference: Secure Multi-Execution and Multiple Facets. European Symposium on Research in Computer Security (ESORICS), Sep 2016, Heraklion, Greece. ⟨hal-01348192⟩

Share

Metrics

Record views

225

Files downloads

84