from qualitative to quantitative program analysis
play

From Qualitative to Quantitative Program Analysis: Permissive - PowerPoint PPT Presentation

Jul 29, 2023 •307 likes •1.28k views

Introduction Information Flow Qualitative IF Quantitative IF Conclusion From Qualitative to Quantitative Program Analysis: Permissive Enforcement of Secure Information Flow Mounir Assaf Software Security Lab, CEA LIST, Saclay CIDre,

  1. Introduction Information Flow Qualitative IF Quantitative IF Conclusion From Qualitative to Quantitative Program Analysis: Permissive Enforcement of Secure Information Flow Mounir Assaf Software Security Lab, CEA LIST, Saclay CIDre, Inria/Irisa/CentraleSupélec, Rennes Since 2015-09, Stevens Institute of Technology, Hoboken, US Mounir Assaf From Qualitative to Quantitative Information Flow 1 / 36

  2. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Information Security Information security : Confidentiality Integrity Availability Traditionally, dissemination of information is prevented through Access control : Deals with what piece of information can be accessed? by whom? Yet, is this piece of information handled correctly when accessed? Information Flow Control : Tracks how information is propagated through a program Verifies that information flows are secure with respect to a security policy Mounir Assaf From Qualitative to Quantitative Information Flow 2 / 36

  3. Introduction Information Flow Qualitative IF Quantitative IF Conclusion A Security Property Attacker model : They know the source of programs and public outputs They control public inputs PUBLIC inputs PUBLIC outputs SECRET inputs SECRET outputs Mounir Assaf From Qualitative to Quantitative Information Flow 3 / 36

  4. Introduction Information Flow Qualitative IF Quantitative IF Conclusion A Security Property Attacker model : They know the source of programs and public outputs They control public inputs PUBLIC inputs PUBLIC outputs X SECRET inputs SECRET outputs A program is secure if non-interfering Roughly, non-interference (in the case of confidentiality) is independance of public outputs from secret inputs Mounir Assaf From Qualitative to Quantitative Information Flow 3 / 36

  5. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Termination-Insensitive Non-Interference Termination-Insensitive Non-Interference (TINI) Two terminating executions which differ only on secret inputs deliver the same public outputs PUBLIC output PUBLIC input SECRET input SECRET output PUBLIC output PUBLIC input SECRET ′ SECRET ′ input output Mounir Assaf From Qualitative to Quantitative Information Flow 4 / 36

  6. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Termination-Insensitive Non-Interference Termination-Insensitive Non-Interference (TINI) Two terminating executions which differ only on secret inputs deliver the same public outputs ✎ ☞ PUBLIC output PUBLIC input ✍ ✌ SECRET input SECRET output ✓ ✏ PUBLIC output PUBLIC input ✒ ✑ SECRET ′ SECRET ′ input output Mounir Assaf From Qualitative to Quantitative Information Flow 4 / 36

  7. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Explicit Information Flows Explicit flows produced when information is transfered directly from source to destination destination := source Assignments generate explicit flows Explicit flow from variable source to destination Mounir Assaf From Qualitative to Quantitative Information Flow 5 / 36

  8. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Implicit Information Flows Implicit flows produced when an assignment is conditioned on the value of an expression public := false if (secret) e execution path execution path l s e public := true else skip print public Implicit flow from variable secret to variable public Mounir Assaf From Qualitative to Quantitative Information Flow 6 / 36

  9. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Pointer-induced flows Pointer-induced flows produced whenever a pointer is dereferenced if (secret) x := &public_a x := &public_b print *x Attackers knowing the values of variables public_a and public_b can deduce information about variable secret when observing the output *x . Mounir Assaf From Qualitative to Quantitative Information Flow 7 / 36

  10. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Pointer-induced flows Pointer-induced flows produced whenever a pointer is dereferenced if (secret) x := &public_a x := &public_b print *x Attackers knowing the values of variables public_a and public_b can deduce information about variable secret when observing the output *x . Implicit flow from secret to pointer x Mounir Assaf From Qualitative to Quantitative Information Flow 7 / 36

  11. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Pointer-induced flows Pointer-induced flows produced whenever a pointer is dereferenced if (secret) x := &public_a x := &public_b print *x Attackers knowing the values of variables public_a and public_b can deduce information about variable secret when observing the output *x . Implicit flow from secret to pointer x Pointer-induced flow from pointer x to *x Mounir Assaf From Qualitative to Quantitative Information Flow 7 / 36

  12. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Contents I Information Flow II Qualitative IF Value Analysis 1 Information Flow Control for C programs 2 PWhile monitor 3 III Quantitative IF IV Conclusion Mounir Assaf From Qualitative to Quantitative Information Flow 8 / 36

  13. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Value Analysis pc1 := secret_lab or public_lab; if (secret > public) e l s e y_lab y_lab := pc1 or 0; skip y := -1 assert y_lab == 0; z := 1/y Frama-C, an industrial-quality framework for source code analysis of C [Kirchner et al.,2015] Value Analysis plug-in a tool based on Abstract Interpretation [Cousot & Cousot,77] over-approximating the variation domains of variables aimed at the detection of runtime errors Mounir Assaf From Qualitative to Quantitative Information Flow 9 / 36

  14. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Value Analysis secret _ lab [1 , 1] , public _ lab [0 , 0] pc1 := secret_lab or public_lab; y _ lab [0 , 0] , pc 1 [1 , 1] if (secret > public) secret [ minI , maxI ] , public [ minI , maxI ] , y [3 , 3] e l s e y_lab y_lab := pc1 or 0; skip y := -1 assert y_lab == 0; z := 1/y Frama-C, an industrial-quality framework for source code analysis of C [Kirchner et al.,2015] Value Analysis plug-in a tool based on Abstract Interpretation [Cousot & Cousot,77] over-approximating the variation domains of variables aimed at the detection of runtime errors Mounir Assaf From Qualitative to Quantitative Information Flow 9 / 36

  15. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Value Analysis secret _ lab [1 , 1] , public _ lab [0 , 0] pc1 := secret_lab or public_lab; y _ lab [0 , 0] , pc 1 [1 , 1] if (secret > public) secret [ minI , maxI ] , public [ minI , maxI ] , y [3 , 3] e l s e y_lab y_lab := pc1 or 0; y _ lab [0 , 0] y _ lab [1 , 1] y [3 , 3] y [ − 1 , − 1] skip y := -1 assert y_lab == 0; z := 1/y Frama-C, an industrial-quality framework for source code analysis of C [Kirchner et al.,2015] Value Analysis plug-in a tool based on Abstract Interpretation [Cousot & Cousot,77] over-approximating the variation domains of variables aimed at the detection of runtime errors Mounir Assaf From Qualitative to Quantitative Information Flow 9 / 36

  16. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Value Analysis secret _ lab [1 , 1] , public _ lab [0 , 0] pc1 := secret_lab or public_lab; y _ lab [0 , 0] , pc 1 [1 , 1] if (secret > public) secret [ minI , maxI ] , public [ minI , maxI ] , y [3 , 3] e l s e y_lab y_lab := pc1 or 0; y _ lab [0 , 0] y _ lab [1 , 1] y [3 , 3] y [ − 1 , − 1] skip y := -1 assert y_lab == 0; y _ lab [0 , 1] y [ − 1 , 3] z := 1/y Frama-C, an industrial-quality framework for source code analysis of C [Kirchner et al.,2015] Value Analysis plug-in a tool based on Abstract Interpretation [Cousot & Cousot,77] over-approximating the variation domains of variables aimed at the detection of runtime errors Mounir Assaf From Qualitative to Quantitative Information Flow 9 / 36

  17. Introduction Information Flow Qualitative IF Quantitative IF Conclusion Value Analysis secret _ lab [1 , 1] , public _ lab [0 , 0] pc1 := secret_lab or public_lab; y _ lab [0 , 0] , pc 1 [1 , 1] if (secret > public) secret [ minI , maxI ] , public [ minI , maxI ] , y [3 , 3] e l s e y_lab y_lab := pc1 or 0; y _ lab [0 , 0] y _ lab [1 , 1] y [3 , 3] y [ − 1 , − 1] skip y := -1 assert y_lab == 0; y _ lab [0 , 1] � zdiv z [ − 1 , 1] y [ − 1 , 3] z := 1/y Frama-C, an industrial-quality framework for source code analysis of C [Kirchner et al.,2015] Value Analysis plug-in a tool based on Abstract Interpretation [Cousot & Cousot,77] over-approximating the variation domains of variables aimed at the detection of runtime errors Mounir Assaf From Qualitative to Quantitative Information Flow 9 / 36

Recommend

From Qualitative to Quantitative Theories of Software Tom Henzinger IST Austria Qualitative

From Qualitative to Quantitative Theories of Software Tom Henzinger IST Austria Qualitative

From Qualitative to Quantitative Theories of Software Tom Henzinger IST Austria Qualitative Software Theories Property Program Analysis Yes/No Qualitative Software Theories Kripke Program Property ( R ) } G) Structure Analysis

937 views • 45 slides
MANURE FROM OUR AGRICULTURAL ANIMALS A QUANTITATIVE AND QUALITATIVE ANALYSIS FOCUSED ON BIOGAS

MANURE FROM OUR AGRICULTURAL ANIMALS A QUANTITATIVE AND QUALITATIVE ANALYSIS FOCUSED ON BIOGAS

MANURE FROM OUR AGRICULTURAL ANIMALS A QUANTITATIVE AND QUALITATIVE ANALYSIS FOCUSED ON BIOGAS PRODUCTION Juan Jos Chvez Fuentes, Aureliana Capobianco, Marianna Czlderov, Miroslav Hut an Aim of this work 1. What is the current

1.17k views • 22 slides
AFFECTING BEHAVIOR MODIFICATION IN DIABETIC PATIENTS A qualitative and quantitative analysis of

AFFECTING BEHAVIOR MODIFICATION IN DIABETIC PATIENTS A qualitative and quantitative analysis of

PSYCHOSOCIAL FACTORS AFFECTING BEHAVIOR MODIFICATION IN DIABETIC PATIENTS A qualitative and quantitative analysis of patients with Type II Diabetes Mellitus in a primarily Hispanic Population in Northeast Community Clinics, Downtown Los

428 views • 19 slides
Data Analysis Qualitative and quantitative data require different methods to be analysed

Data Analysis Qualitative and quantitative data require different methods to be analysed

Data Analysis Qualitative and quantitative data require different methods to be analysed e.g. you cannot analyse numerical data using grounded theory Method should be appropriate to research question Amount of data collected should

379 views • 37 slides
Zooming in and zooming out: Mixing qualitative and quantitative approaches to the analysis

Zooming in and zooming out: Mixing qualitative and quantitative approaches to the analysis

Zooming in and zooming out: Mixing qualitative and quantitative approaches to the analysis of textual data Graham Hughes QUIC Conference 2011 University of Surrey 4 th May 2011 n.hughes@surrey.ac.uk Focus of this session Analysis

513 views • 27 slides
Introduction Best suited for initial explorations of a group or phenomenon. A powerful tool for

Introduction Best suited for initial explorations of a group or phenomenon. A powerful tool for

Stephen E. Brock, Ph.D., NCSP Qualitative Research: Overview and Data Collection/Analysis Stephen E. Brock, Ph.D., NCSP California State University, Sacramento 1 Qualitative vs. Quantitative Research (Gay et al., 2006, p. 400) Quantitative (

463 views • 12 slides
Localism Qualitative and Quantitative Research February 2019 1 Localism Qualitative and

Localism Qualitative and Quantitative Research February 2019 1 Localism Qualitative and

Localism Qualitative and Quantitative Research February 2019 1 Localism Qualitative and Quantitative Research February 2019 Topics Our approach Summary of findings Detailed data Levels of support for localism Types

954 views • 31 slides
AMT2.0 - Qualitative and Quantitative Trace Analysis with Extended Signal Temporal Logic TACAS

AMT2.0 - Qualitative and Quantitative Trace Analysis with Extended Signal Temporal Logic TACAS

AMT2.0 - Qualitative and Quantitative Trace Analysis with Extended Signal Temporal Logic TACAS 2018 Dejan Nikovi AIT Austrian Institute of Technology Olivier Lebeltel, Oded Maler, Dogan Ulus VERIMAG Thomas Ferrre , IST Austria Dejan Ni

496 views • 22 slides
Da Data analysis, interpretation, and pr present ntation 2 1 2/21/16 Quantitative and

Da Data analysis, interpretation, and pr present ntation 2 1 2/21/16 Quantitative and

2/21/16 15/ 15/16 16 CSY2041 2041 Qu Quality and User-Ce CentredSy Systems INTERACTION DESIGN 1 Da Data analysis, interpretation, and pr present ntation 2 1 2/21/16 Quantitative and qualitative Quantitative data expressed

387 views • 9 slides
Benefits and Challenges of Analyzing Qualitative Data Sheelagh Carpendale empirical research

Benefits and Challenges of Analyzing Qualitative Data Sheelagh Carpendale empirical research

Benefits and Challenges of Analyzing Qualitative Data Sheelagh Carpendale empirical research binary? qualitative or quantitative spectrum quantitative qualitative spectrum quantitative qualitative we will look at the qualitative part of

402 views • 17 slides
Quantitative Analysis J. Scott Hawker/R. Kuehl p. 1 R I T Software Engineering Tactics and

Quantitative Analysis J. Scott Hawker/R. Kuehl p. 1 R I T Software Engineering Tactics and

Quantitative Analysis J. Scott Hawker/R. Kuehl p. 1 R I T Software Engineering Tactics and Quantitative Analysis Selecting architectural patterns and tactics is largely qualitative decision making Need to evaluate design decisions and

716 views • 15 slides
From Qualitative to Quantitative Dominance Pruning for Optimal Planning Alvaro Torralba

From Qualitative to Quantitative Dominance Pruning for Optimal Planning Alvaro Torralba

Qualitative Quantitative Finding Dominance Action Selection Pruning Experiments Conclusions From Qualitative to Quantitative Dominance Pruning for Optimal Planning Alvaro Torralba Saarland University HSDIP Workshop June 20, 2017

677 views • 43 slides
ISBE Research Methods Training Series Session 5: Quantitative and Qualitative Analysis Keshia

ISBE Research Methods Training Series Session 5: Quantitative and Qualitative Analysis Keshia

ISBE Research Methods Training Series Session 5: Quantitative and Qualitative Analysis Keshia Harris, Ph.D. 4/8/2019 Workshop series 2018 October 2 Data, Research, and Evidence Overview November 28 Surveys and Focus Groups 2019 January 29

555 views • 43 slides
This presentation uses quantitative and qualitative data to explore the use of honorific

This presentation uses quantitative and qualitative data to explore the use of honorific

This presentation uses quantitative and qualitative data to explore the use of honorific language ( ) and non-honorific language ( ) by two male learners on a study abroad program in Seoul These two cases come from a larger

549 views • 30 slides
Impact Evaluation of Takaful and Karama I. Quantitative Component II. Qualitative Component

Impact Evaluation of Takaful and Karama I. Quantitative Component II. Qualitative Component

Impact Evaluation of Takaful and Karama I. Quantitative Component II. Qualitative Component III. Synthesis Report World Bank SSNP Mission MOSS May 21, 2018 1. Qualitative Component 2. Synthesis Report 3. Final Updates on Quantitative

1.11k views • 95 slides
Qt Ql New People to New Groups S. Gladen licenced under CC BY 2.0 2 Dr. Pat Bazeley,

Qt Ql New People to New Groups S. Gladen licenced under CC BY 2.0 2 Dr. Pat Bazeley,

Keynote Address - MQIC 2019 Transcending the Qualitative - Quantitative Divide Dr. Pat Bazeley Adjunct Professor, TReSI group, Western Sydney University pat@researchsupport.com.au Dr. Pat Bazeley, Transcending the Qualitative-Quantitative

468 views • 15 slides
How to replace qualitative guessing with a capital view A look into quantitative based ERM

How to replace qualitative guessing with a capital view A look into quantitative based ERM

How to replace qualitative guessing with a capital view A look into quantitative based ERM programs February 14, 2017 Agenda 1. Who is Highmark Health? 2. Highmark Health Risk Management & Capital Allocation, how is our ERM program

619 views • 16 slides
T-76.613 Software testing Analyzing Quantitative Data Mika Mntyl <mika.mantyla@hut.fi>

T-76.613 Software testing Analyzing Quantitative Data Mika Mntyl <mika.mantyla@hut.fi>

T-76.613 Software testing Analyzing Quantitative Data Mika Mntyl <mika.mantyla@hut.fi> HELSINKI UNIVERSITY OF TECHNOLOGY Qualitative vs. Quantitative (Coolican 1999) Qualitative Quantitative Information Subjective, Rich

297 views • 13 slides
Qualitative and Quantitative Evaluation of Software Packers Mar a Baz guez , Jos us,

Qualitative and Quantitative Evaluation of Software Packers Mar a Baz guez , Jos us,

Qualitative and Quantitative Evaluation of Software Packers Mar a Baz guez , Jos us, Ricardo J. Rodr e Merseguer All wrongs reversed rjrodriguez@unizar.es @RicardoJRdez www.ricardojrodriguez.es Department of Computer

505 views • 47 slides
REVIEW OF QUALITATIVE RESEARCH AND PRINCIPLES OF QUALITATIVE ANALYSIS SCWK 242 SESSION 2

REVIEW OF QUALITATIVE RESEARCH AND PRINCIPLES OF QUALITATIVE ANALYSIS SCWK 242 SESSION 2

REVIEW OF QUALITATIVE RESEARCH AND PRINCIPLES OF QUALITATIVE ANALYSIS SCWK 242 SESSION 2 SLIDES Review of Qualitative Designs 2 In Qualitative Research: We do not test hypothesis or previous theories. We may try to develop new

640 views • 16 slides
When Numbers Arent Enough: Supplementing Quantitative Data Collection with Qualitative

When Numbers Arent Enough: Supplementing Quantitative Data Collection with Qualitative

When Numbers Arent Enough: Supplementing Quantitative Data Collection with Qualitative Insights Jennifer Hunter Childs U.S. Census Bureau American Association for Public Opinion Research Disclaimer : Any views expressed are those of the

702 views • 42 slides
Modeling Energy Regimes: A Quantitative and Qualitative Study

Modeling Energy Regimes: A Quantitative and Qualitative Study

Modeling Energy Regimes: A Quantitative and Qualitative Study of Energy Choice Across Countries By Julien Philipp Sebas1an Gaertner Primary Thesis Advisor:

201 views • 16 slides
A case at the meeting point between quantitative and qualitative approaches: accessibility to

A case at the meeting point between quantitative and qualitative approaches: accessibility to

A case at the meeting point between quantitative and qualitative approaches: accessibility to health care services for haemophiliacs he 15 th E T me r ging Ne w Re se ar c he r s in the Ge ogr aphy of He alth and Impair me nt Confe r e

344 views • 19 slides
Keywords: Fig, qualitative and quantitative characteristic, diversity, productivity . Time of

Keywords: Fig, qualitative and quantitative characteristic, diversity, productivity . Time of

Keywords: Fig, qualitative and quantitative characteristic, diversity, productivity . Time of study: 2015-2019 Place of study: Collection of fruit tree, Agriculture University of Tirana, germplasm field in Valias. To evaluation, to

638 views • 62 slides

More recommend