an automata based approach for verification of
play

An Automata Based Approach for Verification of Information Flow - PowerPoint PPT Presentation

Aug 20, 2023 •101 likes •696 views

An Automata Based Approach for Verification of Information Flow Properties Deepak DSouza, Raghavendra K.R., Barbara Sprick Indian Institute of Science, Bangalore, India An Automata Based Approach for Verification of Information Flow

  1. An Automata Based Approach for Verification of Information Flow Properties Deepak D’Souza, Raghavendra K.R., Barbara Sprick Indian Institute of Science, Bangalore, India An Automata Based Approach for Verification of Information Flow Properties – p.1/14

  2. Framework Events. V isible, C onfidential, N either An Automata Based Approach for Verification of Information Flow Properties – p.2/14

  3. Framework Events. V isible, C onfidential, N either Trace: finite sequence of events An Automata Based Approach for Verification of Information Flow Properties – p.2/14

  4. Framework Events. V isible, C onfidential, N either Trace: finite sequence of events System: sets of traces An Automata Based Approach for Verification of Information Flow Properties – p.2/14

  5. Framework Events. V isible, C onfidential, N either Trace: finite sequence of events System: sets of traces Information flow properties for all x in L with some conditions ⇒ there exists y in L with some conditions An Automata Based Approach for Verification of Information Flow Properties – p.2/14

  6. � Framework Events. V isible, C onfidential, N either Trace: finite sequence of events System: sets of traces Information flow properties for all x in L with some conditions ⇒ there exists y in L with some conditions Non-Inference( NF ) ∀ τ ∈ L ⇒ τ V ∈ L An Automata Based Approach for Verification of Information Flow Properties – p.2/14

  7. An Example snd - enc - new rcv - enc - acc e f gen - new - pin gen - new - pin snd - enc - old e An Automata Based Approach for Verification of Information Flow Properties – p.3/14

  8. An Example snd - enc - new rcv - enc - acc e f gen - new - pin gen - new - pin snd - enc - old e V = { e, f } C = { gen - new - pin } N = φ An Automata Based Approach for Verification of Information Flow Properties – p.3/14

  9. An Example snd - enc - new rcv - enc - acc e f gen - new - pin gen - new - pin snd - enc - old e V = { e, f } C = { gen - new - pin } N = φ Tr = { gen - new - pin e f , e } + prefixes An Automata Based Approach for Verification of Information Flow Properties – p.3/14

  10. An Example snd - enc - new rcv - enc - acc e f gen - new - pin gen - new - pin snd - enc - old e V = { e, f } C = { gen - new - pin } N = φ Tr = { gen - new - pin e f , e } + prefixes Confidentiality compromised. Noninference fails An Automata Based Approach for Verification of Information Flow Properties – p.3/14

  11. Example ...contd snd - enc - new rcv - enc - acc e f gen - new - pin gen - new - pin snd - enc - old rcv - enc - rej e f An Automata Based Approach for Verification of Information Flow Properties – p.4/14

  12. Example ...contd snd - enc - new rcv - enc - acc e f gen - new - pin gen - new - pin snd - enc - old rcv - enc - rej e f V = { e, f } C = { gen - new - pin } N = φ An Automata Based Approach for Verification of Information Flow Properties – p.4/14

  13. Example ...contd snd - enc - new rcv - enc - acc e f gen - new - pin gen - new - pin snd - enc - old rcv - enc - rej e f V = { e, f } C = { gen - new - pin } N = φ Tr = { gen - new - pin e f , e f } + prefixes An Automata Based Approach for Verification of Information Flow Properties – p.4/14

  14. Example ...contd snd - enc - new rcv - enc - acc e f gen - new - pin gen - new - pin snd - enc - old rcv - enc - rej e f V = { e, f } C = { gen - new - pin } N = φ Tr = { gen - new - pin e f , e f } + prefixes Confidentiality maintained. Noninference holds An Automata Based Approach for Verification of Information Flow Properties – p.4/14

  15. Background Non−Interference Goguen, Meseguer − 82 Noninference Separability Generalized Non−Interference Non−Deducibility An Automata Based Approach for Verification of Information Flow Properties – p.5/14

  16. Background Mantel − BSPs FCIA Non−Interference R Goguen, Meseguer − 82 FCD Noninference D Separability I BSI BSIA Generalized IA Non−Interference FCI BSD Non−Deducibility An Automata Based Approach for Verification of Information Flow Properties – p.5/14

  17. Basic Security Predicates (BSPs) Trace based information flow properties in BSPs An Automata Based Approach for Verification of Information Flow Properties – p.6/14

  18. Basic Security Predicates (BSPs) Trace based information flow properties in BSPs BSP Removal ( R ) new N events An Automata Based Approach for Verification of Information Flow Properties – p.6/14

  19. Basic Security Predicates (BSPs) Trace based information flow properties in BSPs BSP Deletion ( D ) α c β new N events β ′ α ′ An Automata Based Approach for Verification of Information Flow Properties – p.6/14

  20. Basic Security Predicates (BSPs) Trace based information flow properties in BSPs BSP Insertion ( I ) α β β ′ α ′ new C An Automata Based Approach for Verification of Information Flow Properties – p.6/14

  21. � � Basic Security Predicates (BSPs) Trace based information flow properties in BSPs BSP Insert- X Admissable ( IA ) α β β ′ α ′ new C γc in L with γ X = α X An Automata Based Approach for Verification of Information Flow Properties – p.6/14

  22. � � Basic Security Predicates (BSPs) Trace based information flow properties in BSPs BSP Insert- X Admissable ( IA ) α β β ′ α ′ new C γc in L with γ X = α X Generalized Non-Interference - I and D Noninference - R An Automata Based Approach for Verification of Information Flow Properties – p.6/14

  23. Model Checking Can we automate Verification of Information Flow properties? An Automata Based Approach for Verification of Information Flow Properties – p.7/14

  24. Model Checking Can we automate Verification of Information Flow properties? Properties of sets of traces, Classical Model-checking techniques like LTL, CTL cannot be used An Automata Based Approach for Verification of Information Flow Properties – p.7/14

  25. Model Checking Can we automate Verification of Information Flow properties? Properties of sets of traces, Classical Model-checking techniques like LTL, CTL cannot be used Unwinding verification technique - Not complete An Automata Based Approach for Verification of Information Flow Properties – p.7/14

  26. Model Checking Can we automate Verification of Information Flow properties? Properties of sets of traces, Classical Model-checking techniques like LTL, CTL cannot be used Unwinding verification technique - Not complete Good News. For finite systems, Yes An Automata Based Approach for Verification of Information Flow Properties – p.7/14

  27. Model Checking Can we automate Verification of Information Flow properties? Properties of sets of traces, Classical Model-checking techniques like LTL, CTL cannot be used Unwinding verification technique - Not complete Good News. For finite systems, Yes Model Check - BSP on Finite State Automaton An Automata Based Approach for Verification of Information Flow Properties – p.7/14

  28. Language-theoretic Operations L be a language over Σ , X subset of Σ An Automata Based Approach for Verification of Information Flow Properties – p.8/14

  29. � � � Language-theoretic Operations L be a language over Σ , X subset of Σ L X := { τ X | τ in L } , τ X , deletes events that are not elements of X An Automata Based Approach for Verification of Information Flow Properties – p.8/14

  30. � � � Language-theoretic Operations L be a language over Σ , X subset of Σ L X := { τ X | τ in L } , τ X , deletes events that are not elements of X l-del ( L ) := { αβ | αcβ in L , no C events in β } deletes the last occuring C -event An Automata Based Approach for Verification of Information Flow Properties – p.8/14

  31. � � � Language-theoretic Operations L be a language over Σ , X subset of Σ L X := { τ X | τ in L } , τ X , deletes events that are not elements of X l-del ( L ) := { αβ | αcβ in L , no C events in β } deletes the last occuring C -event l-ins ( L ) := { αcβ | αβ in L , no C events in β } inserts a C -event in a position after which no C -events occur An Automata Based Approach for Verification of Information Flow Properties – p.8/14

  32. � � � � � Language-theoretic Operations L be a language over Σ , X subset of Σ L X := { τ X | τ in L } , τ X , deletes events that are not elements of X l-del ( L ) := { αβ | αcβ in L , no C events in β } deletes the last occuring C -event l-ins ( L ) := { αcβ | αβ in L , no C events in β } inserts a C -event in a position after which no C -events occur l-ins-adm X ( L ):= { αcβ | αβ in L , no C events in β , there exists γc in L , γ X = α X inserts a C -event in a position after which no C -events occur subject to a condition An Automata Based Approach for Verification of Information Flow Properties – p.8/14

  33. � � � � � Language-theoretic Operations L be a language over Σ , X subset of Σ L X := { τ X | τ in L } , τ X , deletes events that are not elements of X l-del ( L ) := { αβ | αcβ in L , no C events in β } deletes the last occuring C -event l-ins ( L ) := { αcβ | αβ in L , no C events in β } inserts a C -event in a position after which no C -events occur l-ins-adm X ( L ):= { αcβ | αβ in L , no C events in β , there exists γc in L , γ X = α X inserts a C -event in a position after which no C -events occur subject to a condition . . . An Automata Based Approach for Verification of Information Flow Properties – p.8/14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Symbolic String Verification: An Automata-based Approach Fang Yu Tevfik Bultan Marco Cova

Symbolic String Verification: An Automata-based Approach Fang Yu Tevfik Bultan Marco Cova

Outline Motivation Symbolic String Verification Experiments Conclusion Symbolic String Verification: An Automata-based Approach Fang Yu Tevfik Bultan Marco Cova Oscar H. Ibarra Dept. of Computer Science University of California Santa

465 views • 35 slides
B uchi Automata and their Application to Software Verification Finite Automata Theory and

B uchi Automata and their Application to Software Verification Finite Automata Theory and

B uchi Automata and their Application to Software Verification Finite Automata Theory and Formal Languages Wolfgang Ahrendt 22nd April 2013 B uchi Automata: TMV027/DIT321 / GU 130423 1 / 25 Motivating Temporal Logic? But How to

832 views • 64 slides
Improved Algorithms for the Automata-based Approach to Model-Checking L. Doyen (EPFL) and J.-F.

Improved Algorithms for the Automata-based Approach to Model-Checking L. Doyen (EPFL) and J.-F.

Improved Algorithms for the Automata-based Approach to Model-Checking L. Doyen (EPFL) and J.-F. Raskin (ULB) TACAS 2007 Braga - Portugal March 28, 2007 Automata-based approach to model-checking Programs and properties are formalized as

812 views • 52 slides
Zone based verification of timed automata revisited B. Srivathsan Joint work with F. Herbreteau

Zone based verification of timed automata revisited B. Srivathsan Joint work with F. Herbreteau

Zone based verification of timed automata revisited B. Srivathsan Joint work with F. Herbreteau and I. Walukiewicz LaBRI, Universit e de Bordeaux 1 Groupe de Travail Mod elisation et V erification LIF, Marseille - November 2011 Zone

1.51k views • 127 slides
A Closed-loop Model-based Design Approach Based On Automatic Verification and Transformation

A Closed-loop Model-based Design Approach Based On Automatic Verification and Transformation

A Closed-loop Model-based Design Approach Based On Automatic Verification and Transformation Kun Zhang Jonathan Sprinkle Eclipse: fix a fat-finger or type change automatically Electrical and Computer Engineering 2 Eclipse: make warnings go

380 views • 18 slides
Pushdown Automata 7-0 Pushdown Automata The automata we saw so far were

Pushdown Automata 7-0 Pushdown Automata The automata we saw so far were

Griffith University 3130CIT Theory of Computation (Based on slides by Harald Sndergaard of The University of Melbourne) Pushdown Automata 7-0 Pushdown Automata The automata we saw so far were limited by their

368 views • 15 slides
Symbolic Verification of Programs with Pointers using Tree Automata Ji r Sim a

Symbolic Verification of Programs with Pointers using Tree Automata Ji r Sim a

Symbolic Verification of Programs with Pointers using Tree Automata Ji r Sim a cek Universit e Joseph Fourrier (France) Brno University of Technology (Czech Republic) 1 Ph.D. 1st year of doctoral degree programme at

377 views • 21 slides
SAT-based verification (BMC, temporal induction) Mary Sheeran, Chalmers SAT-based verification

SAT-based verification (BMC, temporal induction) Mary Sheeran, Chalmers SAT-based verification

SAT-based verification (BMC, temporal induction) Mary Sheeran, Chalmers SAT-based verification now hot Used here in Sweden since 1989 mostly in safety critical applications (railway control program verification) Bounded Model Checking a

468 views • 25 slides
Verification of New Mesh-based Rigorous 2 Step Computational Approach for the Shutdown Dose Rate

Verification of New Mesh-based Rigorous 2 Step Computational Approach for the Shutdown Dose Rate

Transactions of the Korean Nuclear Society Virtual Spring Meeting July 9-10, 2020 Verification of New Mesh-based Rigorous 2 Step Computational Approach for the Shutdown Dose Rate Distributions in the Fusion Facilities Jae Hyun KIM, Myeong Hyeon

166 views • 3 slides
Automata and program analysis Thomas Colcombet FCT Bordeaux 13 September 2017 based on

Automata and program analysis Thomas Colcombet FCT Bordeaux 13 September 2017 based on

Automata and program analysis Thomas Colcombet FCT Bordeaux 13 September 2017 based on joint work with Laure Daviaud et Florian Zuleger Weighted automata and tropical automata Weighted automata [Schtzenberger 61] Weighted automata

1.67k views • 129 slides
Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition

Timed Transition Systems Timed Automata Networks of Timed Automata Equivalence Checking Problems Regions and Region Graph Modelling and Verification Timed Automata: A Formalism for Real-time Systems Labelled transition systems with time

1.21k views • 62 slides
Tree Automata, Approximations, and Constraints for Verification Ph.D. thesis defence for Vincent

Tree Automata, Approximations, and Constraints for Verification Ph.D. thesis defence for Vincent

Tree Automata, Approximations, and Constraints for Verification Ph.D. thesis defence for Vincent Hugot , Supervised by O. Kouchnarenko and P.-C. Ham {pheam,vhugot,okouchna}@femto-st.fr University of Franche-Comt DGA & Inria/CASSIS &

1.97k views • 181 slides
Off-line Signature Verification: A Circular Outline Grid-Based Feature Extraction Approach

Off-line Signature Verification: A Circular Outline Grid-Based Feature Extraction Approach

8vas. Jornadas de Ciencias de la Computaci on (XIII JCC) XIII JCC Off-line Signature Verification: A Circular Outline Grid-Based Feature Extraction Approach Motivation Contributions Feature Marianela Parodi Extraction SVM-based <

652 views • 28 slides
A Symbolic Execution-Based Approach to Model Transformation Verification using Structural

A Symbolic Execution-Based Approach to Model Transformation Verification using Structural

A Symbolic Execution-Based Approach to Model Transformation Verification using Structural Contracts Bentley James Oakes McGill University bentley.oakes@mail.mcgill.ca September 4, 2018 1 Introduction 2 Formalization of DSLTrans 3

386 views • 37 slides
OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A

OUTLINE Model Checking in a Nutshell Timed automata and TCTL Timed Automata, TCTL A UPPAAL Tutorial & Verification Problems Data stuctures & central algorithms UPPAAL input languages 1 2 Timed Automata: Syntax

408 views • 11 slides
Automata in Infinite-State Formal Verification Ond rej Leng al Advisor: prof. Ing. Tom

Automata in Infinite-State Formal Verification Ond rej Leng al Advisor: prof. Ing. Tom

Automata in Infinite-State Formal Verification Ond rej Leng al Advisor: prof. Ing. Tom a s Vojnar, Ph.D. (Co-supervised by: Mgr. Luk a s Hol k, Ph.D.) Faculty of Information Technology Brno University of Technology Ond

562 views • 43 slides
The distribution of turbulence driven wind speed extremes; a closed form asymptotic formulation

The distribution of turbulence driven wind speed extremes; a closed form asymptotic formulation

The distribution of turbulence driven wind speed extremes; a closed form asymptotic formulation Gunner Chr. Larsen Outline Introduction Modeling The classical approach - Cartwright /Longuet-Higgins o [1] An approach based on a

667 views • 46 slides
Michael Zmistowski District Director Chairman

Michael Zmistowski District Director Chairman

Re#rement Solu#ons with fixed annuity, variable annuity, target date, balanced and stable value funds PANELISTS MODERATOR Michael Baney, CIMA Michael Zmistowski

619 views • 15 slides
Questions that linguistics should answer Corpora What kinds of things do people say? What

Questions that linguistics should answer Corpora What kinds of things do people say? What

Questions that linguistics should answer Corpora What kinds of things do people say? What do these things say/ask/request about the world? A corpus is a body of naturally occurring text, normally Example: In addition to this, she

336 views • 6 slides
Business Statistics CONTENTS Hypotheses on the median The sign test The Wilcoxon signed ranks

Business Statistics CONTENTS Hypotheses on the median The sign test The Wilcoxon signed ranks

MEDIAN: NON-PARAMETRIC TESTS Business Statistics CONTENTS Hypotheses on the median The sign test The Wilcoxon signed ranks test Old exam question Further study HYPOTHESES ON THE MEDIAN The median is a central value that may be more

327 views • 19 slides
SAT SAT ... To Become the Auto Parts Manufacturing Leader in ASEAN ... To Become the

SAT SAT ... To Become the Auto Parts Manufacturing Leader in ASEAN ... To Become the

SAT SAT ... To Become the Auto Parts Manufacturing Leader in ASEAN ... To Become the Auto Parts Manufacturing Leader in ASEAN 1Q09 Operating Results 1Q09 Operating Results nd June 2009 2 2 nd June 2009 Agenda Industry Overview

617 views • 36 slides
Fire-Sale FDI Yankun Wang Department of Economics February 2008 Yankun Wang (Cornell) February

Fire-Sale FDI Yankun Wang Department of Economics February 2008 Yankun Wang (Cornell) February

Fire-Sale FDI Yankun Wang Department of Economics February 2008 Yankun Wang (Cornell) February 2008 1 / 20 What is Fire-Sale FDI? During a liquidity crisis, there is an increase in foreign acquisition of domestic rms and a decline in the

436 views • 20 slides
drm/i915 Updates Daniel Vetter, Intel OTC FOSDEM 2013 bug squashing bugs fixed by the

drm/i915 Updates Daniel Vetter, Intel OTC FOSDEM 2013 bug squashing bugs fixed by the

drm/i915 Updates Daniel Vetter, Intel OTC FOSDEM 2013 bug squashing bugs fixed by the truckload especially regressions! intel-gpu-tools kernel tests no testsuite is worse than having none debugfs knobs for tricky cases

438 views • 24 slides
FEDLINK and Federal Libraries: Growing Stronger Together Joe Cappello Chief Operating Officer,

FEDLINK and Federal Libraries: Growing Stronger Together Joe Cappello Chief Operating Officer,

FEDLINK and Federal Libraries: Growing Stronger Together Joe Cappello Chief Operating Officer, National and International Outreach and Acting Director of National Enterprises Library of Congres s INTRODUCTION / STAFFING UPDATE FEDLINK

485 views • 9 slides

More recommend