Verified and Optimized Inlined Reference Monitors

Strato: A Retargetable Framework for Low-Level Inlined-Reference Monitors

Low-level Inlined Reference Monitors (IRM) such as control-flow integrity and software-based fault isolation can foil numerous software attacks. Conventionally, those IRMs are implemented through binary rewriting or transformation on equivalent low-level programs that are tightly coupled with a specific Instruction Set Architecture (ISA). Resulting implementations have poor retargetability to d...

Secure Optimization of Inlined Reference Monitors

Inlined Reference Monitor (IRM) is the preferred enforcement mechanism for historybased access control policies. IRM enforcement injects monitoring code into the binary of an untrusted program in order to track its execution history. The injected code denies access when execution deviates from the policy. The viability of IRM enforcement is predicated on the ability of the binary rewriting elem...

Aspect-Oriented Runtime Monitor Certification

In-lining runtime monitors into untrusted binary programs via aspect-weaving is an increasingly popular technique for efficiently and flexibly securing untrusted mobile code. However, the complexity of the monitor implementation and in-lining process in these frameworks can lead to vulnerabilities and low assurance for code-consumers. This paper presents a machine-verification technique for asp...

The Inlined Reference Monitor Approach to Security Policy Enforcement

Analytical Performance and Quality Control of a Glucose Monitor System

  Background and Objective: The reliability and validity of monitors for self-monitoring of blood glucose are debated. We evaluated the analytical performance of Accu-check Active (Boehringer Mannheim, Roche) which is one of the most commonly used monitors in Iran. Material and Methods: We compared the monitor readings with the reference values by percentage of values within...