An official website of the United States government
Dependent security labels (security labels that depend on program states) in various forms have been introduced to express rich information flow policies. They are shown to be essential in the verification of real-world software and hardware systems such as conference management systems, Android Apps, a MIPS processor and a TrustZone-like architecture. However, most work assumes that all (complex) labels are provided manually, which can both be error-prone and time-consuming. In this paper, we tackle the problem of automatic label inference for static information flow analyses with dependent security labels. In particular, we propose the first general framework to facilitate the design and validation (in terms of soundness and/or completeness) of inference algorithms. The framework models label inference as constraint solving and offers guidelines for sound and/or complete constraint solving. Under the framework, we propose novel constraint solving algorithms that are both sound and complete. Evaluation result on sets of constraints generated from secure and insecure variants of a MIPS processor suggests that the novel algorithms improve the performance of an existing algorithm by orders of magnitude and offers better scalability.
more »
« less
- Home
- Search Results
- Page 1 of 1
Search for: All records
Award ID contains:
1566411
-
Total Resources5
- Resource Type
-
0002000003000000
- More
- Availability
-
50
- Author / Contributor
- Filter by Author / Creator
-
-
Zhang, Danfeng (5)
-
Kifer, Daniel (2)
-
Li, Peixuan (2)
-
Ding, Zeyu (1)
-
Myers, Andrew C. (1)
-
Peyton-Jones, Simon (1)
-
Vytiniotis, Dimitrios (1)
-
Wang, Guanhong (1)
-
Wang, Yuxin (1)
-
#Tyler Phillips, Kenneth E. (0)
-
#Willis, Ciara (0)
-
& Abreu-Ramos, E. D. (0)
-
& Abramson, C. I. (0)
-
& Abreu-Ramos, E. D. (0)
-
& Adams, S.G. (0)
-
& Ahmed, K. (0)
-
& Ahmed, Khadija. (0)
-
& Aina, D.K. Jr. (0)
-
& Akcil-Okan, O. (0)
-
& Akuom, D. (0)
-
- Filter by Editor
-
-
& Spizer, S. M. (0)
-
& . Spizer, S. (0)
-
& Ahn, J. (0)
-
& Bateiha, S. (0)
-
& Bosch, N. (0)
-
& Brennan K. (0)
-
& Brennan, K. (0)
-
& Chen, B. (0)
-
& Chen, Bodong (0)
-
& Drown, S. (0)
-
& Ferretti, F. (0)
-
& Higgins, A. (0)
-
& J. Peters (0)
-
& Kali, Y. (0)
-
& Ruiz-Arias, P.M. (0)
-
& S. Spitzer (0)
-
& Sahin. I. (0)
-
& Spitzer, S. (0)
-
& Spitzer, S.M. (0)
-
(submitted - in Review for IEEE ICASSP-2024) (0)
-
-
Have feedback or suggestions for a way to improve these results?
!
Note: When clicking on a Digital Object Identifier (DOI) number, you will be taken to an external site maintained by the publisher.
Some full text articles may not yet be available without a charge during the embargo (administrative interval).
What is a DOI Number?
Some links on this page may take you to non-federal websites. Their policies may differ from this site.
-
-
Ding, Zeyu; Wang, Yuxin; Wang, Guanhong; Zhang, Danfeng; Kifer, Daniel (, The 2018 ACM SIGSAC Conference on Computer and Communications Security)
-
Zhang, Danfeng; Myers, Andrew C.; Vytiniotis, Dimitrios; Peyton-Jones, Simon (, ACM Transactions on Programming Languages and Systems)
-
Li, Peixuan; Zhang, Danfeng (, 30th IEEE Computer Security Foundations Symposium)
-
Zhang, Danfeng; Kifer, Daniel (, ACM SIGPLAN Notices)
