Tracking Insecure Information Flows: A Prototype Evaluator in ASF+SDF

نویسنده

Doaa Hassan

چکیده

In this paper, we describe the implementation of a prototype evaluator for RDRL a domain-specific security typed programming language that allows dynamically tracking the information flow control and prevents both explicit and implicit insecure flows. The evaluator has been implemented using the ASF+SDF Language Specification Formalism which allows defining the syntax and semantics of a domain specific language (DSL). Using this prototype, we analyze the information flow dynamically and avoid the need for an approximate static analysis of information flow security.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Prototyping the Semantics of a DSL using ASF+SDF: Link to Formal Verification of DSL Models

A formal definition of the semantics of a domain-specific language (DSL) is a key prerequisite for the verification of the correctness of models specified using such a DSL and of transformations applied to these models. For this reason, we implemented a prototype of the semantics of a DSL for the specification of systems consisting of concurrent, communicating objects. Using this prototype, mod...

متن کامل

A Case Study of a Slicing-Based Approach for Locating Type Errors

Type checkers have been specified in ASF+SDF for many languages, using a variety of specification styles. Several mechanisms for tracking positional information have been proposed, each with shortcomings and/or restrictions on specifications. We propose the use of dynamic dependence tracking for tracking positional information. In this approach, a slice of the program being type checked is asso...

متن کامل

Specifying an Automated Induction

We describe the implementation of an automated theorem pro-ver for algebraic speciications, in an algebraic speciication setting using the ASF+SDF Meta-environment. The current implementation is based on the implicit induction approach implemented in SPIKE 1, 2]. We consider the implementation as a case study on the tool generation within ASF+SDF which also provides an experimental basis for th...

متن کامل

Action Semantics and ASF+SDF: System Demonstration

Modularity and tool support are crucial features for practical use of formal descriptions of programming languages. The combination of unrestricted context-free grammars with action semantics allows complete language descriptions with exceptionally good modularity. Moreover, by specifying the descriptions in ASF+SDF, the ASF+SDF Meta-Environment can be used to provide appropriate tool support.

متن کامل

CASL for ASF+SDF Users

Casl is an expressive language for the algebraic specification of software requirements, design, and architecture. It has been developed by an open collaborative effort called CoFI (Common Framework Initiative for algebraic specification and development). Casl combines the best features of many previous algebraic specification languages, and it is hoped that it may provide a focus for future re...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}

با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره شماره

صفحات -

تاریخ انتشار 2012

Tracking Insecure Information Flows: A Prototype Evaluator in ASF+SDF

نویسنده

چکیده

منابع مشابه

Prototyping the Semantics of a DSL using ASF+SDF: Link to Formal Verification of DSL Models

A Case Study of a Slicing-Based Approach for Locating Type Errors

Specifying an Automated Induction

Action Semantics and ASF+SDF: System Demonstration

CASL for ASF+SDF Users

عنوان ژورنال:

اشتراک گذاری