题名 | Secure information flow in Java by optimized reachability analysis of weighted pushdown system |
作者 | |
发表日期 | 2012 |
发表期刊 | Jisuanji Yanjiu yu Fazhan/Computer Research and Development
![]() |
ISSN/eISSN | 1000-1239 |
卷号 | 49期号:5页码:901-912 |
摘要 | A semantic-based approach is commonly considered more precise than the type-based approach to enforcing secure information flow for the program. As a standard criterion to formalize secure information flow, noninterference has not been analyzed with semantic-based approaches at bytecode level. We propose a semantic-based approach to model checking weighted pushdown system for noninterference. In order to overcome the limitations brought by the language feature and application scenario, we extend ordinary self-composition to low-recorded self composition. In this extension the meta-level indices of heap are recorded, and the auxiliary interleaving assignments, as well as the branch condition to illegal-flow state, are modeled to validate the reachability analysis. We prove the correctness that unreachability of illegal-flow state implies the noninterference property of bytecode program. We also propose three model optimizations: companion methods elimination, parameter reordering, and inner-block optimized abstraction of additional code. The experimental results show the availability, efficiency and scalability of our approach, and the effectiveness of the optimizations. |
关键词 | Information flow Noninterference Reachability analysis Self-composition Weighted pushdown system |
URL | 查看来源 |
语种 | 英语English |
Scopus入藏号 | 2-s2.0-84862653640 |
引用统计 | |
文献类型 | 期刊论文 |
条目标识符 | https://repository.uic.edu.cn/handle/39GCC9TT/13544 |
专题 | 个人在本单位外知识产出 |
通讯作者 | Sun,Cong |
作者单位 | 1.Key Laboratory of Computer Networks and Information Security, Ministry of Education,Xidian University,Xi'an 710071,China 2.Key Laboratory of High Confidence Software Technologies, Ministry of Education,Peking University,Beijing 100871,China |
推荐引用方式 GB/T 7714 | Sun,Cong,Tang,Liyong,Chen,Zhonget al. Secure information flow in Java by optimized reachability analysis of weighted pushdown system[J]. Jisuanji Yanjiu yu Fazhan/Computer Research and Development, 2012, 49(5): 901-912. |
APA | Sun,Cong, Tang,Liyong, Chen,Zhong, & Ma,Jianfeng. (2012). Secure information flow in Java by optimized reachability analysis of weighted pushdown system. Jisuanji Yanjiu yu Fazhan/Computer Research and Development, 49(5), 901-912. |
MLA | Sun,Cong,et al."Secure information flow in Java by optimized reachability analysis of weighted pushdown system". Jisuanji Yanjiu yu Fazhan/Computer Research and Development 49.5(2012): 901-912. |
条目包含的文件 | 条目无相关文件。 |
个性服务 |
查看访问统计 |
谷歌学术 |
谷歌学术中相似的文章 |
[Sun,Cong]的文章 |
[Tang,Liyong]的文章 |
[Chen,Zhong]的文章 |
百度学术 |
百度学术中相似的文章 |
[Sun,Cong]的文章 |
[Tang,Liyong]的文章 |
[Chen,Zhong]的文章 |
必应学术 |
必应学术中相似的文章 |
[Sun,Cong]的文章 |
[Tang,Liyong]的文章 |
[Chen,Zhong]的文章 |
相关权益政策 |
暂无数据 |
收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论