Utilize este identificador para referenciar este registo:
https://hdl.handle.net/1822/66207
Título: | K-Taint: an executable rewriting logic semantics for taint analysis in the K framework |
Autor(es): | Alam, Md. Imran Halder, Raju Goswami, Harshita Pinto, Jorge Sousa |
Palavras-chave: | Taint analysis K Framework Information flow Security |
Data: | 1-Jan-2018 |
Editora: | SCITEPRESS |
Resumo(s): | The K framework is a rewrite logic-based framework for defining programming language semantics suitable for formal reasoning about programs and programming languages. In this paper, we present K-Taint, a rewriting logic-based executable semantics in the K framework for taint analysis of an imperative programming language. Our K semantics can be seen as a sound approximation of programs semantics in the corresponding security type domain. More specifically, as a foundation to this objective, we extend to the case of taint analysis the semantically sound flow-sensitive security type system by Hunt and Sands's, considering a support to the interprocedural analysis as well. With respect to the existing methods, K-Taint supports context- and flow-sensitive analysis, reduces false alarms, and provides a scalable solution. Experimental evaluation on several benchmark codes demonstrates encouraging results as an improvement in the precision of the analysis. |
Tipo: | Artigo em ata de conferência |
URI: | https://hdl.handle.net/1822/66207 |
ISBN: | 978-989-758-300-1 |
DOI: | 10.5220/0006786603590366 |
ISSN: | 2184-4895 |
Versão da editora: | https://www.scitepress.org/PublicationsDetail.aspx?ID=IXEWXjANJVU=&t=1 |
Arbitragem científica: | yes |
Acesso: | Acesso aberto |
Aparece nas coleções: |
Ficheiros deste registo:
Ficheiro | Descrição | Tamanho | Formato | |
---|---|---|---|---|
2018_ENASE_18.pdf | 194,55 kB | Adobe PDF | Ver/Abrir |