a bstract n on i nterference n arrow
play

A BSTRACT N ON -I NTERFERENCE (N ARROW ) Public Input Private Input - PowerPoint PPT Presentation

Oct 02, 2023 •22 likes •802 views

A BSTRACT N ON -I NTERFERENCE A N A BSTRACT I NTERPRETATION - BASED VIEW ON C ODE S ECURITY Roberto Giacobazzi and Isabella Mastroeni Dipartimento di Informatica Universit` a di Verona Italy London, April 2012 Giaco London 2012

  1. A BSTRACT N ON -I NTERFERENCE A N A BSTRACT I NTERPRETATION - BASED VIEW ON C ODE S ECURITY Roberto Giacobazzi and Isabella Mastroeni Dipartimento di Informatica Universit` a di Verona Italy London, April 2012 � Giaco – London 2012 – p.1/31 c

  2. T HE DIMENSIONS OF N ON -I NTERFERENCE We distinguish two points of view [ Sabelfeld & Sands 2005 ] : ➪ W HO observes the information flows? ➪ W HAT information flows? � Giaco – London 2012 – p.2/31 c

  3. T HE DIMENSIONS OF N ON -I NTERFERENCE We distinguish two points of view [ Sabelfeld & Sands 2005 ] : ➪ W HO observes the information flows? How can we weaken non-interference by characterizing the observational capability of who observes? ✔ By means of Equivalence relations : PER MODEL , R OBUST DECLASSIFICATION ; ✔ By means of Abstract domains : A BSTRACT N ON -I NTERFERENCE ; ➪ W HAT information flows? � Giaco – London 2012 – p.2/31 c

  4. T HE DIMENSIONS OF N ON -I NTERFERENCE We distinguish two points of view [ Sabelfeld & Sands 2005 ] : ➪ W HO observes the information flows? How can we weaken non-interference by characterizing the observational capability of who observes? ➪ W HAT information flows? How can we weaken non-interference by characterizing what of the private information flows? � Giaco – London 2012 – p.2/31 c

  5. T HE DIMENSIONS OF N ON -I NTERFERENCE We distinguish two points of view [ Sabelfeld & Sands 2005 ] : ➪ W HO observes the information flows? How can we weaken non-interference by characterizing the observational capability of who observes? ➪ W HAT information flows? How can we weaken non-interference by characterizing what of the private information flows? ✔ Declassifying what can flow: S ELECTIVE DEPENDENCY , E NFORCING ROBUST DECLASSIFICATION , A BSTRACT NON - INTERFERENCE , D ELIMITED RELEASE , R ELAXED NONINTERFERENCE ; � Giaco – London 2012 – p.2/31 c

  6. T HE DIMENSIONS OF N ON -I NTERFERENCE We distinguish two points of view [ Sabelfeld & Sands 2005 ] : ➪ W HO observes the information flows? How can we weaken non-interference by characterizing the observational capability of who observes? ➪ W HAT information flows? How can we weaken non-interference by characterizing what of the private information flows? ✔ Declassifying what can flow: S ELECTIVE DEPENDENCY , E NFORCING ROBUST DECLASSIFICATION , A BSTRACT NON - INTERFERENCE , D ELIMITED RELEASE , R ELAXED NONINTERFERENCE ; ✔ Classifying what cannot flow: A BSTRACT NON - INTERFERENCE . � Giaco – London 2012 – p.2/31 c

  7. D EFINING A BSTRACT N ON -I NTERFERENCE � Giaco – London 2012 – p.3/31 c

  8. O UR I DEA Secret H Public L SW H L Secret H External observer Public L � Giaco – London 2012 – p.4/31 c

  9. O UR I DEA Secret H Public L SW Observer: ρ H L ρ Secret H External observer Public L � Giaco – London 2012 – p.4/31 c

  10. O UR I DEA Secret H Public L SW Observable: φ φ ( H ) L ρ Secret φ ( H ) External observer Public L � Giaco – London 2012 – p.4/31 c

  11. A BSTRACT I NTERPRETATION Design approximate semantics of programs [Cousot & Cousot ’77, ’79]. ⊤ ⊤ γ γ ( α ( x )) α Abstract α x Concrete Galois Connection: � C , α, γ, A � , A and C are complete lattices. Closures: � Abs ( C ) , ⊑� set of all possible abstract domains, A 1 ⊑ A 2 if A 1 is more concrete than A 2 � Giaco – London 2012 – p.5/31 c

  12. A BSTRACT I NTERPRETATION Design approximate semantics of programs [Cousot & Cousot ’77, ’79]. ⊤ γ ( α ( x )) Abstract x γ ◦ α ∈ Abs ( C ) Concrete Galois Connection: � C , α, γ, A � , A and C are complete lattices. Closures: � Abs ( C ) , ⊑� set of all possible abstract domains, A 1 ⊑ A 2 if A 1 is more concrete than A 2 � Giaco – London 2012 – p.6/31 c

  13. S TANDARD N ON -I NTERFERENCE Public Input Private Input � P � Public Output ∀ l : L , ∀ h 1 , h 2 : H . � P � ( h 1 , l ) L = � P � ( h 2 , l ) L � Giaco – London 2012 – p.7/31 c

  14. S TANDARD N ON -I NTERFERENCE Public Input Private Input � P � Public Output ∀ l : L , ∀ h 1 , h 2 : H . � P � ( h 1 , l ) L = � P � ( h 2 , l ) L � Giaco – London 2012 – p.7/31 c

  15. S TANDARD N ON -I NTERFERENCE Public Input Private Input � P � Public Output ∀ l : L , ∀ h 1 , h 2 : H . � P � ( h 1 , l ) L = � P � ( h 2 , l ) L � Giaco – London 2012 – p.7/31 c

  16. S TANDARD N ON -I NTERFERENCE Public Input Private Input � P � Public Output ∀ l : L , ∀ h 1 , h 2 : H . � P � ( h 1 , l ) L = � P � ( h 2 , l ) L � Giaco – London 2012 – p.7/31 c

  17. S TANDARD N ON -I NTERFERENCE Public Input Private Input � P � Public Output ∀ l : L , ∀ h 1 , h 2 : H . � P � ( h 1 , l ) L = � P � ( h 2 , l ) L � Giaco – London 2012 – p.7/31 c

  18. S TANDARD N ON -I NTERFERENCE Public Input Private Input � P � Public Output ∀ l : L , ∀ h 1 , h 2 : H . � P � ( h 1 , l ) L = � P � ( h 2 , l ) L � Giaco – London 2012 – p.7/31 c

  19. A BSTRACT N ON -I NTERFERENCE (N ARROW ) Public Input Private Input η [Giacobazzi & Mastroeni ’04] � P � Public Output ρ ρ, η ∈ Abs ( ℘ ( V L )) : [ η ] P ( ρ ) : η ( l 1 ) = η ( l 2 ) ⇒ ρ ( � P � ( h 1 , l 1 ) L ) = ρ ( � P � ( h 2 , l 2 ) L ) � Giaco – London 2012 – p.8/31 c

  20. A BSTRACT N ON -I NTERFERENCE (N ARROW ) Public Input Private Input η [Giacobazzi & Mastroeni ’04] � P � Public Output ρ ρ, η ∈ Abs ( ℘ ( V L )) : [ η ] P ( ρ ) : η ( l 1 ) = η ( l 2 ) ⇒ ρ ( � P � ( h 1 , l 1 ) L ) = ρ ( � P � ( h 2 , l 2 ) L ) � Giaco – London 2012 – p.8/31 c

  21. A BSTRACT N ON -I NTERFERENCE (N ARROW ) Public Input Private Input η [Giacobazzi & Mastroeni ’04] � P � Public Output ρ ρ, η ∈ Abs ( ℘ ( V L )) : [ η ] P ( ρ ) : η ( l 1 ) = η ( l 2 ) ⇒ ρ ( � P � ( h 1 , l 1 ) L ) = ρ ( � P � ( h 2 , l 2 ) L ) � Giaco – London 2012 – p.8/31 c

  22. A BSTRACT N ON -I NTERFERENCE (N ARROW ) Public Input Private Input η [Giacobazzi & Mastroeni ’04] � P � Public Output ρ ρ, η ∈ Abs ( ℘ ( V L )) : [ η ] P ( ρ ) : η ( l 1 ) = η ( l 2 ) ⇒ ρ ( � P � ( h 1 , l 1 ) L ) = ρ ( � P � ( h 2 , l 2 ) L ) � Giaco – London 2012 – p.8/31 c

  23. A BSTRACT N ON -I NTERFERENCE (N ARROW ) Public Input Private Input η [Giacobazzi & Mastroeni ’04] � P � Public Output ρ ρ, η ∈ Abs ( ℘ ( V L )) : [ η ] P ( ρ ) : η ( l 1 ) = η ( l 2 ) ⇒ ρ ( � P � ( h 1 , l 1 ) L ) = ρ ( � P � ( h 2 , l 2 ) L ) � Giaco – London 2012 – p.8/31 c

  24. A BSTRACT N ON -I NTERFERENCE (N ARROW ) Public Input Private Input η � P � [Giacobazzi & Mastroeni ’04] Public Output ρ Deceptive flow!! ρ, η ∈ Abs ( ℘ ( V L )) : [ η ] P ( ρ ) : η ( l 1 ) = η ( l 2 ) ⇒ ρ ( � P � ( h 1 , l 1 ) L ) = ρ ( � P � ( h 2 , l 2 ) L ) � Giaco – London 2012 – p.8/31 c

  25. A BSTRACT N ON -I NTERFERENCE (ANI) Public Input Private Input η � P � [Giacobazzi & Mastroeni ’04] Public Output ρ ρ, η ∈ Abs ( ℘ ( V L )) : ( η ) P ( ρ ) : η ( l 1 )= η ( l 2 ) ⇒ ρ ( � P � ( h 1 , η ( l 1 )) L )= ρ ( � P � ( h 2 , η ( l 2 )) L ) � Giaco – London 2012 – p.9/31 c

  26. A BSTRACT N ON -I NTERFERENCE (ANI) Public Input Private Input η � P � [Giacobazzi & Mastroeni ’04] Public Output ρ ρ, η ∈ Abs ( ℘ ( V L )) : ( η ) P ( ρ ) : η ( l 1 )= η ( l 2 ) ⇒ ρ ( � P � ( h 1 , η ( l 1 )) L )= ρ ( � P � ( h 2 , η ( l 2 )) L ) � Giaco – London 2012 – p.9/31 c

  27. A BSTRACT N ON -I NTERFERENCE (ANI) Public Input Private Input η � P � [Giacobazzi & Mastroeni ’04] Public Output ρ ρ, η ∈ Abs ( ℘ ( V L )) : ( η ) P ( ρ ) : η ( l 1 )= η ( l 2 ) ⇒ ρ ( � P � ( h 1 , η ( l 1 )) L )= ρ ( � P � ( h 2 , η ( l 2 )) L ) � Giaco – London 2012 – p.9/31 c

  28. A BSTRACT N ON -I NTERFERENCE (ANI) Public Input Private Input η � P � [Giacobazzi & Mastroeni ’04] Public Output ρ ρ, η ∈ Abs ( ℘ ( V L )) : ( η ) P ( ρ ) : η ( l 1 )= η ( l 2 ) ⇒ ρ ( � P � ( h 1 , η ( l 1 )) L )= ρ ( � P � ( h 2 , η ( l 2 )) L ) � Giaco – London 2012 – p.9/31 c

  29. A BSTRACT N ON -I NTERFERENCE (ANI) Public Input Private Input η � P � [Giacobazzi & Mastroeni ’04] Public Output ρ ρ, η ∈ Abs ( ℘ ( V L )) : ( η ) P ( ρ ) : η ( l 1 )= η ( l 2 ) ⇒ ρ ( � P � ( h 1 , η ( l 1 )) L )= ρ ( � P � ( h 2 , η ( l 2 )) L ) � Giaco – London 2012 – p.9/31 c

  30. E XAMPLES E XAMPLE I : while h do ( l := l + 2 ; h := h − 1 ). Standard Non-Interference ≡ [ id ] P ( id ) h = 0, l = 1 ❀ l = 1 h = 1, l = 1 ❀ l = 3 h = n , l = 1 ❀ l = 1 + 2 n � Giaco – London 2012 – p.10/31 c

  31. E XAMPLES E XAMPLE I : while h do ( l := l + 2 ; h := h − 1 ). Standard Non-Interference ≡ [ id ] P ( id ) h = 0, l = 1 ❀ l = 1 h = 1, l = 1 ❀ l = 3 h = n , l = 1 ❀ l = 1 + 2 n ⇓ [ id ] P ( Par ) h = 0, l = 1 ❀ Par ( l ) = odd h = 1, l = 1 ❀ Par ( l ) = odd h = n , l = 1 ❀ Par ( l ) = odd � Giaco – London 2012 – p.10/31 c

Recommend

DDR solution Sprites overview Moving right arrow Moving left arrow Moving down arrow Moving up

DDR solution Sprites overview Moving right arrow Moving left arrow Moving down arrow Moving up

DDR solution Sprites overview Moving right arrow Moving left arrow Moving down arrow Moving up arrow Moving up arrow Cassy (contol loop) Great sprite OK sprite Space bar sprite

521 views • 11 slides
! X SAS08 Valencia p.8/44 I N C OMPARATIVE S EMANTICS P 1 ; P 2 A = P 1

! X SAS08 Valencia p.8/44 I N C OMPARATIVE S EMANTICS P 1 ; P 2 A = P 1

T RANSFORMING A BSTRACT I NTERPRETATIONS BY A BSTRACT I NTERPRETATIONS M ODELLING S YSTEMS AS AI T RANSFORMERS Roberto Giacobazzi (and A. Banerjee, I. Mastroeni , E. Quintarelli, F. Ranzato, F. Scozzari) SAS08, Valencia July 2008 SAS08

1.51k views • 125 slides
Apache Arrow & TDataFrame Giulio Eulisse (CERN) 22 Mar 2018 1 Apache Arrow: the project

Apache Arrow & TDataFrame Giulio Eulisse (CERN) 22 Mar 2018 1 Apache Arrow: the project

Apache Arrow & TDataFrame Giulio Eulisse (CERN) 22 Mar 2018 1 Apache Arrow: the project Apache Arrow is a cross-language development platform for in-memory data Well established. Top-Level Apache project backed by key developers of a

283 views • 7 slides
Fiber Cement Sheet About : Arrow Systems Arrow Systems, Inc. manufactures and distributes a

Fiber Cement Sheet About : Arrow Systems Arrow Systems, Inc. manufactures and distributes a

Fiber Cement Sheet About : Arrow Systems Arrow Systems, Inc. manufactures and distributes a wide range of materials and equipment for the digital printing and cutting markets. We serve a variety of segments within the indoor/outdoor

265 views • 24 slides
Arrow Electronics EMEA Components Ilan Sharon Field Applicati tion Engineer Arrow Electronics

Arrow Electronics EMEA Components Ilan Sharon Field Applicati tion Engineer Arrow Electronics

Arrow Electronics EMEA Components Ilan Sharon Field Applicati tion Engineer Arrow Electronics is a global provider of products, services and solutions to industrial and commercial users of electronic components Arrow V-System What is a

707 views • 14 slides
ARROW EXPLORATION October 31, 2018 ARROW EXPLORATION CORP. (TSXV: AXL) Disclaimer NOTICE TO

ARROW EXPLORATION October 31, 2018 ARROW EXPLORATION CORP. (TSXV: AXL) Disclaimer NOTICE TO

ARROW EXPLORATION October 31, 2018 ARROW EXPLORATION CORP. (TSXV: AXL) Disclaimer NOTICE TO INVESTORS This presentation, and the information contained herein, is not for release, distribution or publication into or in the United States or any

685 views • 27 slides
Red Arrow Beach Marinette, Wisconsin Looking north over Red Arrow Beach. Looking northeast over

Red Arrow Beach Marinette, Wisconsin Looking north over Red Arrow Beach. Looking northeast over

Red Arrow Beach Marinette, Wisconsin Looking north over Red Arrow Beach. Looking northeast over the parking lot area. Looking north over Red Arrow Beach Looking north over the beach area at Red Arrow Beach. Rip/Rap at the south edge of Red

541 views • 21 slides
To add an arrow in Google Slides click the line icon in the toolbar then select Arrow in

To add an arrow in Google Slides click the line icon in the toolbar then select Arrow in

To add an arrow in Google Slides click the line icon in the toolbar then select Arrow in menu To make an arrow more visible: 1.) click the arrow 2.) click the Line Weight icon in the toolbar 3.) then select the size from the menu

513 views • 3 slides
Arrow Therapeutics Limited Corporate Presentation 2007 1 Arrow Therapeutic Areas Clinical

Arrow Therapeutics Limited Corporate Presentation 2007 1 Arrow Therapeutic Areas Clinical

Arrow Therapeutics Limited Corporate Presentation 2007 1 Arrow Therapeutic Areas Clinical 2006 Hepatitis C Respiratory Syncytial Virus A-831 Novel NS5a inhibitor RSV604 First in class therapeutic Large unmet medical need Large

554 views • 21 slides
Control Strategies 2009 Arrow Canyon Complex Air Cooled Condenser 2 Harry Allen Arrow Canyon

Control Strategies 2009 Arrow Canyon Complex Air Cooled Condenser 2 Harry Allen Arrow Canyon

1 Control Strategies 2009 Arrow Canyon Complex Air Cooled Condenser 2 Harry Allen Arrow Canyon Complex Site Chuck Lenzie Silverhawk Canyon Complex Arrow 3 Chuck Lenzie Canyon Complex Arrow Control I ssues Arrow Canyon Complex

522 views • 15 slides
Operation Arrow The OAs staff at the 2017 National Scout Jamboree What is Operation Arrow?

Operation Arrow The OAs staff at the 2017 National Scout Jamboree What is Operation Arrow?

Operation Arrow The OAs staff at the 2017 National Scout Jamboree What is Operation Arrow? OAs 2017 program of emphasis Continues a 50+ year OA tradition Goal: Recruit 750+ youth Arrowmen staff Youth opportunities in three

272 views • 12 slides
A N O BSERVATIONAL S TUDY IN G ENDER O BEDIENCE Jacqueline Behr & Annalyn Belarmino A BSTRACT

A N O BSERVATIONAL S TUDY IN G ENDER O BEDIENCE Jacqueline Behr & Annalyn Belarmino A BSTRACT

A N O BSERVATIONAL S TUDY IN G ENDER O BEDIENCE Jacqueline Behr & Annalyn Belarmino A BSTRACT Previous studies have displayed no gender differences in obedience This study was conducted to test this lack of differences Blow-up

216 views • 10 slides
A proof - theoretic approach to abstract interpretation Apostolos Tzimoulis joint work with

A proof - theoretic approach to abstract interpretation Apostolos Tzimoulis joint work with

A proof - theoretic approach to abstract interpretation Apostolos Tzimoulis joint work with Vijay DSilva, Alessandra Palmigiano and Caterina Urban (with images from Patrick Cousot) TACL 2017 - Prague A bstract interpretation A bstract

341 views • 14 slides
in Western Australia June 2018 Disclaimer This presentation has been prepared by Arrow

in Western Australia June 2018 Disclaimer This presentation has been prepared by Arrow

Gold, Lithium & Nickel Exploration in Western Australia June 2018 Disclaimer This presentation has been prepared by Arrow Minerals Limited ( Arrow or the Company ). It contains general information about the Companys activities current

233 views • 19 slides
Section of Colonic mucosa biopsy. The black arrow points to the shallow broad based ulcers. The

Section of Colonic mucosa biopsy. The black arrow points to the shallow broad based ulcers. The

Section of Colonic mucosa biopsy. The black arrow points to the shallow broad based ulcers. The blue arrow is on the intact muscularis Mucosa. The yellow arrow points to the Lymphoid hyperplasia. The red points to the crypt abscess. R & D

516 views • 6 slides
North Arrow Minerals Presentation to YKDFN Presentation Overview Introduction to North

North Arrow Minerals Presentation to YKDFN Presentation Overview Introduction to North

North Arrow Minerals Presentation to YKDFN Presentation Overview Introduction to North Arrow Minerals Introduction to North Arrow Minerals Lac de Gras Project Location and Description Explanation of Exploration Process

608 views • 26 slides
Asset Pricing Chapter VIII. Arrow-Debreu Pricing June 22, 2006 Asset Pricing 8.1 Setting: An

Asset Pricing Chapter VIII. Arrow-Debreu Pricing June 22, 2006 Asset Pricing 8.1 Setting: An

8.1 Setting: An Arrow Debreu Economy 8.2 Competitive Equilibrium and Pareto Optimality Illustrated 8.3 Pareto Optimality and risk Sharing 8.4 Implementing Pareto Optimal Allocations: On the Possibility of Market failure 8.5 Arrow-Debreu pricing:

655 views • 19 slides
Project Arrow and Math Acceleration Identification Protocols Ensuring all learning needs are met

Project Arrow and Math Acceleration Identification Protocols Ensuring all learning needs are met

Project Arrow and Math Acceleration Identification Protocols Ensuring all learning needs are met appropriately. Project Arrow Fall: Screening and Initial Data Review Identification Administration of Cognitive Abilities Process Test

406 views • 15 slides
Vector diagrams *Vectors should be drawn tip-to-tail *Put arrows on all vectors *Resultant arrow

Vector diagrams *Vectors should be drawn tip-to-tail *Put arrows on all vectors *Resultant arrow

Vector diagrams *Vectors should be drawn tip-to-tail *Put arrows on all vectors *Resultant arrow goes toward last open arrow *angle is measured from the starting point a. Find the speed of the model airplane. b. On the diagram, draw a vector

649 views • 39 slides
The arrow of time and quantum physics: difficulties and resolutions Detlev Buchholz Quantum

The arrow of time and quantum physics: difficulties and resolutions Detlev Buchholz Quantum

The arrow of time and quantum physics: difficulties and resolutions Detlev Buchholz Quantum physics meets mathematics Syposium on the occasion of Klaus Fredenhagen s 70th birthday Universitt Hamburg, December 8th 2017 1 / 24 Arrow of time

494 views • 24 slides
1 2 exemplary data set (Brasilia, created with GE-Graph) same data visualisation from a top view

1 2 exemplary data set (Brasilia, created with GE-Graph) same data visualisation from a top view

values (child mortality per country) as circular symbols in the virtual environment Google Earth (created with Thematic Mapping Engine), green arrow = Switzerland, orange arrow= Albania; both displays show the same data but from two different

316 views • 7 slides
Red Arrow Beach Manitowoc, Wisconsin Looking east over Red Arrow Beach, showing an area where

Red Arrow Beach Manitowoc, Wisconsin Looking east over Red Arrow Beach, showing an area where

Red Arrow Beach Manitowoc, Wisconsin Looking east over Red Arrow Beach, showing an area where parking lot runoff enters the beach area. Showing an area where runoff from the parking lot crosses a walking path and enters the beach. Looking

783 views • 67 slides
Cyber Risks, Systemic Risks, and Cyber Insurance James E. Scheuermann* A BSTRACT The literature

Cyber Risks, Systemic Risks, and Cyber Insurance James E. Scheuermann* A BSTRACT The literature

Cyber Risks, Systemic Risks, and Cyber Insurance James E. Scheuermann* A BSTRACT The literature on cyber insurance is replete with statements to the effect that cyber risks are systemic risks. Through an analysis of the concept of

350 views • 32 slides
ARROW CATCHMENT AND WAKATIPU BASIN AQUIFERS Developing a plan change December 2017 About

ARROW CATCHMENT AND WAKATIPU BASIN AQUIFERS Developing a plan change December 2017 About

ARROW CATCHMENT AND WAKATIPU BASIN AQUIFERS Developing a plan change December 2017 About Overview What we heard last time Background The options Upcoming consultation Where to next Arrow catchment and Wakatipu Basin

292 views • 25 slides

More recommend