A Generic Approach to the Security of Multi-Threaded Programs
نویسندگان
چکیده
The security of computation at the level of a specific programming language and the security of complex systems at a more abstract level are two major areas of current security research. With the objective to integrate the two, this article proposes a translation of a timing-sensitive security property for simple multi-threaded programs into a more general security framework. Interestingly, our notion of security for programs is bisimulation-based while the security framework is trace-based. Nevertheless, we show that the translation is sound and complete in the sense that the trace-based specification which results from the translation of a multi-threaded program is secure if and only if the original program is secure. The translation is presented as a two-step process where the first step is independent from the concrete programming language.
منابع مشابه
A Generic Graph Model for WCET Analysis of Multi-Core Concurrent Applications
Worst-case execution time (WCET) analysis of multi-threaded software is still a challenge. This comes mainly from the fact that synchronization has to be taken into account. In this paper, we focus on this issue and on automatically calculating and incorporating stalling times (e.g. caused by lock contention) in a generic graph model. The idea that thread interleavings can be studied with a mat...
متن کاملDetecting Reliability and Security Rule Violations
Real-world programs are undergoing paradigm shifts, and these shifts introduce reliability and security problems. One paradigm shift is that programs are moving from single-threaded to multi-threaded. However, multi-threaded programs are notoriously hard to get right, and a key reason is that these programs have too many possible thread interleavings, which aggravates understanding, testing, de...
متن کاملA Unifying Approach to the Security of Distributed and Multi-Threaded Programs
The security of computation at the level of a specific programming language and the security of complex systems at a more abstract level are two major areas of current security research. With the objective to integrate the two, this article proposes an adequate translation of a timing-sensitive security property for simple multi-threaded programs into a more general security framework. Soundnes...
متن کاملConvertible limited (multi-) verifier signature: new constructions and applications
A convertible limited (multi-) verifier signature (CL(M)VS) provides controlled verifiability and preserves the privacy of the signer. Furthermore, limited verifier(s) can designate the signature to a third party or convert it into a publicly verifiable signature upon necessity. In this proposal, we first present a generic construction of convertible limited verifier signature (CLVS) into which...
متن کاملnement Properties for Multi Threaded Programs
Given a program that has access to some private information how can we ensure that it does not improperly leak the information We formalize the desired security property as a property called noninterference We discuss versions of noninterference appropriate for multi threaded programs with probabilistic scheduling and describe rules for ensuring noninterference
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2001