abstraction carrying code
play

Abstraction-Carrying Code an Puebla and Manuel Hermenegildo , - PowerPoint PPT Presentation

Mar 29, 2023 •113 likes •608 views

Abstraction-Carrying Code an Puebla and Manuel Hermenegildo , Elvira Albert , Germ ( ) Complutense University of Madrid (UCM) ( ) Technical University of Madrid (Spain) ( ) University of New

  1. Abstraction-Carrying Code an Puebla ∗∗ and Manuel Hermenegildo ∗∗ , ∗∗∗ Elvira Albert ∗ , Germ´ ( ∗ ) Complutense University of Madrid (UCM) ( ∗∗ ) Technical University of Madrid (Spain) ( ∗ ∗ ∗ ) University of New Mexico (USA) RUC Datalogi Research Seminars: Autumn 2004 Roskilde, 21 October, 2004 Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 1 / 17

  2. Motivation Mobile computing is characterized by having a relatively large number of untrusted computing devices which interact. ◮ Assurance of the safety and characteristics of the code received and also the kind of load it is going to pose. ◮ At the same time, it is essential to simplify such verification process and reduce its resource usage. Proof-Carrying Code (PCC) and related approaches to mobile code safety involve associating safety information in the form of a certificate to programs. Code suppliers compute tamper-proof certificates and pass them along with the code which simplify code verification. Abstraction-carrying code follows the standard approach of associating certificates to programs but it is based throughout on the technique of abstract interpretation. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 2 / 17

  3. Motivation Mobile computing is characterized by having a relatively large number of untrusted computing devices which interact. ◮ Assurance of the safety and characteristics of the code received and also the kind of load it is going to pose. ◮ At the same time, it is essential to simplify such verification process and reduce its resource usage. Proof-Carrying Code (PCC) and related approaches to mobile code safety involve associating safety information in the form of a certificate to programs. Code suppliers compute tamper-proof certificates and pass them along with the code which simplify code verification. Abstraction-carrying code follows the standard approach of associating certificates to programs but it is based throughout on the technique of abstract interpretation. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 2 / 17

  4. Motivation Mobile computing is characterized by having a relatively large number of untrusted computing devices which interact. ◮ Assurance of the safety and characteristics of the code received and also the kind of load it is going to pose. ◮ At the same time, it is essential to simplify such verification process and reduce its resource usage. Proof-Carrying Code (PCC) and related approaches to mobile code safety involve associating safety information in the form of a certificate to programs. Code suppliers compute tamper-proof certificates and pass them along with the code which simplify code verification. Abstraction-carrying code follows the standard approach of associating certificates to programs but it is based throughout on the technique of abstract interpretation. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 2 / 17

  5. Motivation Mobile computing is characterized by having a relatively large number of untrusted computing devices which interact. ◮ Assurance of the safety and characteristics of the code received and also the kind of load it is going to pose. ◮ At the same time, it is essential to simplify such verification process and reduce its resource usage. Proof-Carrying Code (PCC) and related approaches to mobile code safety involve associating safety information in the form of a certificate to programs. Code suppliers compute tamper-proof certificates and pass them along with the code which simplify code verification. Abstraction-carrying code follows the standard approach of associating certificates to programs but it is based throughout on the technique of abstract interpretation. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 2 / 17

  6. Motivation Mobile computing is characterized by having a relatively large number of untrusted computing devices which interact. ◮ Assurance of the safety and characteristics of the code received and also the kind of load it is going to pose. ◮ At the same time, it is essential to simplify such verification process and reduce its resource usage. Proof-Carrying Code (PCC) and related approaches to mobile code safety involve associating safety information in the form of a certificate to programs. Code suppliers compute tamper-proof certificates and pass them along with the code which simplify code verification. Abstraction-carrying code follows the standard approach of associating certificates to programs but it is based throughout on the technique of abstract interpretation. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 2 / 17

  7. Introduction: Proof-Carrying Code Security techniques verify that the execution of a program is safe , i.e., meets certain properties of predefined safety policy . PCC and related approaches to mobile code safety involve associating safety information in the form of a certificate to programs. Certificate (or proof) created at compile time by the code supplier, packaged with untrusted code. Code consumer can then run a verifier which, by a straightforward inspection of code and certificate, verifies validity of certificate and thus compliance with safety policy. The key benefit of this “certificate-based” approach to mobile code safety is that the burden of ensuring compliance with the desired safety policy is shifted from the consumer to the supplier. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 3 / 17

  8. Introduction: Proof-Carrying Code Security techniques verify that the execution of a program is safe , i.e., meets certain properties of predefined safety policy . PCC and related approaches to mobile code safety involve associating safety information in the form of a certificate to programs. Certificate (or proof) created at compile time by the code supplier, packaged with untrusted code. Code consumer can then run a verifier which, by a straightforward inspection of code and certificate, verifies validity of certificate and thus compliance with safety policy. The key benefit of this “certificate-based” approach to mobile code safety is that the burden of ensuring compliance with the desired safety policy is shifted from the consumer to the supplier. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 3 / 17

  9. Source Byte Code Compiler Execution Program VCGen VCGen Verification Verification Conditions Conditions Proof Prover Certificate OK Checker Code Producer Code Consumer Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 4 / 17

  10. Introduction: Proof-Carrying Code (contd.) Well-known methods following this approach are: ◮ Proof-Carrying Code (PCC) [Necula’97] ◮ Typed Assembly Languages (TAL) [Morrisett et al.’99]. The certificate may take different forms: ◮ In PCC the certificate is originally a proof in first-order logic of certain verification conditions. ◮ A recent proposal [Bernard and P. Lee’02] uses temporal logic to specify security policies in PCC. ◮ In TAL, the certificate is a type annotation of the assembly language program. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 5 / 17

  11. Introduction: Proof-Carrying Code (contd.) Well-known methods following this approach are: ◮ Proof-Carrying Code (PCC) [Necula’97] ◮ Typed Assembly Languages (TAL) [Morrisett et al.’99]. The certificate may take different forms: ◮ In PCC the certificate is originally a proof in first-order logic of certain verification conditions. ◮ A recent proposal [Bernard and P. Lee’02] uses temporal logic to specify security policies in PCC. ◮ In TAL, the certificate is a type annotation of the assembly language program. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 5 / 17

  12. Introduction: Proof-Carrying Code (contd.) The design of mobile code safety systems based on certificates shares the same, fundamental challenges: 1. defining expressive safety policies covering a wide range of properties, 2. solving the problem of how to automatically generate the certificates and, 3. designing simple, reliable, and efficient checkers for the certificates. The various approaches differ in expressiveness, flexibility, and efficiency, but share the goal of using safety information to make untrusted mobile code safe and efficient. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 6 / 17

  13. Introduction: Proof-Carrying Code (contd.) The design of mobile code safety systems based on certificates shares the same, fundamental challenges: 1. defining expressive safety policies covering a wide range of properties, 2. solving the problem of how to automatically generate the certificates and, 3. designing simple, reliable, and efficient checkers for the certificates. The various approaches differ in expressiveness, flexibility, and efficiency, but share the goal of using safety information to make untrusted mobile code safe and efficient. Elvira Albert (UCM) Abstraction-Carrying Code Roskilde, 21 October, 2004 6 / 17

Recommend

Abstraction-Carrying Code an Puebla and Manuel Hermenegildo , Elvira Albert

Abstraction-Carrying Code an Puebla and Manuel Hermenegildo , Elvira Albert

Abstraction-Carrying Code an Puebla and Manuel Hermenegildo , Elvira Albert , Germ ( ) Complutense University of Madrid (Spain) ( ) Technical University of Madrid (Spain) ( ) University of New

570 views • 18 slides
Abstraction-Carrying Code an Puebla and Manuel Hermenegildo , Elvira Albert

Abstraction-Carrying Code an Puebla and Manuel Hermenegildo , Elvira Albert

Abstraction-Carrying Code an Puebla and Manuel Hermenegildo , Elvira Albert , Germ ( ) Complutense University of Madrid (Spain) ( ) Technical University of Madrid (Spain) ( ) University of New

506 views • 23 slides
Specification-Carrying Code for Self-Managed Systems Giovanna Di Marzo Serugendo University of

Specification-Carrying Code for Self-Managed Systems Giovanna Di Marzo Serugendo University of

Specification-Carrying Code for Self-Managed Systems Giovanna Di Marzo Serugendo University of Geneva, Switzerland Giovanna Di Marzo Serugendo 1 SelfMan 2005, 19/05/05 Outline Semantic Infrastructure Specification-Carrying Code

462 views • 14 slides
Proof-Carrying Code GEORGE C. NECULA , POPL 97 PRESENTED BY TOM MAGRINO AND MENTORED BY ETHAN

Proof-Carrying Code GEORGE C. NECULA , POPL 97 PRESENTED BY TOM MAGRINO AND MENTORED BY ETHAN

Proof-Carrying Code GEORGE C. NECULA , POPL 97 PRESENTED BY TOM MAGRINO AND MENTORED BY ETHAN CECCHETTI IN GREAT WORKS IN PL, APRIL 16 TH , 2019 How can you trust that code you downloaded? Context Similar motivation to TAL: Want

155 views • 14 slides
10-16-2018 CARRYING CAPACITY Carrying capacity is defined as the number of individuals who

10-16-2018 CARRYING CAPACITY Carrying capacity is defined as the number of individuals who

Jekyll Island Carrying Capacity & Infrastructure Assessment 10-16-2018 CARRYING CAPACITY Carrying capacity is defined as the number of individuals who can be supported within a given area without degrading the natural, social,

698 views • 23 slides
Point, Line, & Plane 1 Abstraction Abstraction is the act of considering something as a

Point, Line, & Plane 1 Abstraction Abstraction is the act of considering something as a

Point, Line, & Plane 1 Abstraction Abstraction is the act of considering something as a general quality or characteristic, apart from concrete realities, specific objects, or actual instances. 2 Abstraction Abstraction is

478 views • 21 slides
Minimal logic for computable functionals Helmut Schwichtenberg Mathematisches Institut der

Minimal logic for computable functionals Helmut Schwichtenberg Mathematisches Institut der

Minimal logic for computable functionals Helmut Schwichtenberg Mathematisches Institut der Universit at M unchen Motivation Proof carrying code (Lee, Necula) Why? Proofs are machine checkable (easily) Need: code carrying proofs

701 views • 53 slides
Predicate Abstraction with SATABS Existential Abstraction Predicate Abstraction for Software

Predicate Abstraction with SATABS Existential Abstraction Predicate Abstraction for Software

Outline Introduction Predicate Abstraction with SATABS Existential Abstraction Predicate Abstraction for Software Counterexample-Guided Abstraction Refinement Computing Existential Abstractions of Programs Version 1.0, 2010 Checking the

429 views • 12 slides
Proof Search in Minimal Logic Helmut Schwichtenberg Mathematisches Institut, Universit at M

Proof Search in Minimal Logic Helmut Schwichtenberg Mathematisches Institut, Universit at M

Proof Search in Minimal Logic Helmut Schwichtenberg Mathematisches Institut, Universit at M unchen 1 Motivation Proof carrying code (Lee, Necula) Why? Proofs are machine checkable (easily) Here: code carrying proofs Prospects:

541 views • 36 slides
Data Abstraction Announcements Data Abstraction Data Abstraction Programmers Compound

Data Abstraction Announcements Data Abstraction Data Abstraction Programmers Compound

Data Abstraction Announcements Data Abstraction Data Abstraction Programmers Compound values combine other values together All A date: a year, a month, and a day A geographic position: latitude and longitude Data abstraction

430 views • 19 slides
1 Neighbor Table Message Pool Contains Contains Reference to the next packet

1 Neighbor Table Message Pool Contains Contains Reference to the next packet

Tow ards a Sensor Netw ork Architecture: Low ering the Waistline Unifying Link Lack of sensor net architecture Abstraction for Monolithic protocols Wireless Sensor No abstraction Netw orks No modularity No code reuse

420 views • 5 slides
Carrying capacity assessment and impact Carrying capacity assessment and impact of aquaculture in

Carrying capacity assessment and impact Carrying capacity assessment and impact of aquaculture in

Carrying capacity assessment and impact Carrying capacity assessment and impact of aquaculture in Chinese bays of aquaculture in Chinese bays *1,*2 *1,*2 http://www.ecowin.org/china/ J.G. Ferreira Universidade Nova de Lisboa Faculdade de

595 views • 33 slides
What is abstraction? What is abstraction? Workable answer a blurring of details Idea:

What is abstraction? What is abstraction? Workable answer a blurring of details Idea:

What is abstraction? What is abstraction? Workable answer a blurring of details Idea: agree to ignore certain details ( for now ) e.g., with procedural abstraction idea is to convert original problem to a series of simpler

229 views • 12 slides
Lecture 11: Abstraction I ntro. to Programming, lecture 11: Abstraction 2 Topics for today

Lecture 11: Abstraction I ntro. to Programming, lecture 11: Abstraction 2 Topics for today

Chair of Softw are Engineering Einfhrung in die Programmierung Introduction to Programming Prof. Dr. Bertrand Meyer Lecture 11: Abstraction I ntro. to Programming, lecture 11: Abstraction 2 Topics for today Abstraction, especially

167 views • 12 slides
Carrying Capacity What Is It And Why Is It Important? Photo from NOAA Science Center 1

Carrying Capacity What Is It And Why Is It Important? Photo from NOAA Science Center 1

Carrying Capacity What Is It And Why Is It Important? Photo from NOAA Science Center 1 Definition Carrying Capacity = Number of individuals or biomass the resources of a given area can support usually through the most unfavorable period of the

185 views • 16 slides
On Visual Abstraction Ivan Viola Visual Abstraction Fundamental concept in visualization and

On Visual Abstraction Ivan Viola Visual Abstraction Fundamental concept in visualization and

On Visual Abstraction Ivan Viola Visual Abstraction Fundamental concept in visualization and visual arts Somewhat intuitively understood A formal definition not available VAD textbook refers to task and data abstraction Map generalization:

387 views • 11 slides
Announcements Data Abstraction Data Abstraction Compound values combine other values together

Announcements Data Abstraction Data Abstraction Compound values combine other values together

Announcements Data Abstraction Data Abstraction Compound values combine other values together Programmers A date: a year, a month, and a day All A geographic position: latitude and longitude Data abstraction lets us manipulate

383 views • 3 slides
Data Abstraction Announcements Data Abstraction Data Abstraction 4 Data Abstraction

Data Abstraction Announcements Data Abstraction Data Abstraction 4 Data Abstraction

Data Abstraction Announcements Data Abstraction Data Abstraction 4 Data Abstraction Compound values combine other values together 4 Data Abstraction Compound values combine other values together A date: a year, a month, and

1.38k views • 124 slides
STAKEHOLDERS STUDY ON THE TOURISM CARRYING CAPACITY FOR THE WORKSHOP ISLAND OF MAHE

STAKEHOLDERS STUDY ON THE TOURISM CARRYING CAPACITY FOR THE WORKSHOP ISLAND OF MAHE

STAKEHOLDERS STUDY ON THE TOURISM CARRYING CAPACITY FOR THE WORKSHOP ISLAND OF MAHE BONZOUR! WHAT WELL ACCOMPLISH Purpose of Snapshot of Carrying Current Capacity Study Conditions Understanding Defining a of Key Issues Path

964 views • 59 slides
www.webinos.org Use existing standards where ever possible Functional abstraction vs

www.webinos.org Use existing standards where ever possible Functional abstraction vs

www.webinos.org Use existing standards where ever possible Functional abstraction vs Data abstraction Functional abstraction better for legacy and performance (JavaScript: Geolocation example) Connectivity: URI naming

212 views • 3 slides
What is a Process? Answer 1: a process is an abstraction of a program in execution Answer 2: a

What is a Process? Answer 1: a process is an abstraction of a program in execution Answer 2: a

Processes and the Kernel 1 What is a Process? Answer 1: a process is an abstraction of a program in execution Answer 2: a process consists of an address space , which represents the memory that holds the programs code and data a thread

661 views • 36 slides
What is a Process? Answer 1: a process is an abstraction of a program in execution Answer 2: a

What is a Process? Answer 1: a process is an abstraction of a program in execution Answer 2: a

Processes and the Kernel 1 What is a Process? Answer 1: a process is an abstraction of a program in execution Answer 2: a process consists of an address space , which represents the memory that holds the programs code and data a thread

446 views • 43 slides
Predicate Abstraction with SATABS Version 1.0, 2010 Outline Introduction Existential

Predicate Abstraction with SATABS Version 1.0, 2010 Outline Introduction Existential

Predicate Abstraction with SATABS Version 1.0, 2010 Outline Introduction Existential Abstraction Predicate Abstraction for Software Counterexample-Guided Abstraction Refinement Computing Existential Abstractions of Programs Checking the

1.66k views • 162 slides
Object-Oriented Programming 1908 Harry Beck, 1933 Abstraction Abstraction is the process of

Object-Oriented Programming 1908 Harry Beck, 1933 Abstraction Abstraction is the process of

Object-Oriented Programming 1908 Harry Beck, 1933 Abstraction Abstraction is the process of capturing only those ideas about a concept that are relevant to the current situation. Irrelevant ideas are left out. Abstraction Control

335 views • 14 slides

More recommend