Secure program execution via dynamic information flow tracking
نویسندگان
چکیده
منابع مشابه
Secure Execution via Program Shepherding
We introduce program shepherding, a method for monitoring control flow transfers during program execution to enforce a security policy. Program shepherding provides three techniques as building blocks for security policies. First, shepherding can restrict execution privileges on the basis of code origins. This distinction can ensure that malicious code masquerading as data is never executed, th...
متن کاملSecure Information Flow via Linear Continuations
Security-typed languages enforce secrecy or integrity policies by type-checking. This paper investigates continuation-passing style (CPS) as a means of proving that such languages enforce noninterference and as a first step towards understanding their compilation. We present a low-level, secure calculus with higher-order, imperative features and linear continuations. Linear continuations impose...
متن کاملStatic Visualization of Dynamic Data Flow Visual Program Execution
We propose ‘Trace View’, a static visualization method for monitoring and debugging the dynamic behavior of programs written in data flow visual programming languages. Trace View presents a hierarchical structure of the data flow between nodes that is created over the execution time of the program. The view also serves as an interface that allows the programmer to select a data stream link when...
متن کاملArchitecture-Independent Dynamic Information Flow Tracking
Dynamic information flow tracking is a well-known dynamic software analysis technique with a wide variety of applications that range from making systems more secure, to helping developers and analysts better understand the code that systems are executing. Traditionally, the fine-grained analysis capabilities that are desired for the class of these systems which operate at the binary level requi...
متن کاملTracking Information Flow in Dynamic Tree Structures
This paper explores the problem of tracking information flow in dynamic tree structures. Motivated by the problem of manipulating the Document Object Model (DOM) trees by browser-run client-side scripts, we address the dynamic nature of interactions via tree structures. We present a runtime enforcement mechanism that monitors this interaction and prevents a range of attacks, some of them missed...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: ACM SIGARCH Computer Architecture News
سال: 2004
ISSN: 0163-5964
DOI: 10.1145/1037947.1024404