certificate translation
play

Certificate translation Gilles Barthe INRIA Sophia-Antipolis, - PowerPoint PPT Presentation

Apr 02, 2023 •348 likes •642 views

EVEREST MOBIUS Certificate translation Summary Certificate translation Gilles Barthe INRIA Sophia-Antipolis, France http://www-sop.inria.fr/everest September 7th, 2005 G. Barthe Certificate translation EVEREST MOBIUS Certificate

  1. EVEREST MOBIUS Certificate translation Summary Certificate translation Gilles Barthe INRIA Sophia-Antipolis, France http://www-sop.inria.fr/everest September 7th, 2005 G. Barthe Certificate translation

  2. EVEREST MOBIUS Certificate translation Summary EVEREST MOBIUS Certificate translation G. Barthe Certificate translation

  3. EVEREST MOBIUS Certificate translation Summary EVEREST Objective: design implementation applications of formal techniques for safety and security of software Background: logic, type theory and proof assistants programming language semantics and compilation program analysis and language-based security Application domains: trusted personal devices (smart cards, mobile phones) ubiquitous computing G. Barthe Certificate translation

  4. EVEREST MOBIUS Certificate translation Summary Example of Trusted Personal Device: Java SmartCard Widely deployed for banking Java source Class file Cap file and telecom applications; package fr.inri 011100011 011100011 many upcoming applications Class File Converter 101011010 101011010 Java compiler import javacar Cap File Builder 011111001 011111001 110110111 110110111 public class no 100100110 100100110 public Object such as e-ID, Pay-TV. . . Bytecode verifier Loading Linking Representative of tensions between flexibility and security Applet Applet Applet 011100011 011100011 011100011 101011010 101011010 101011010 011111001 011111001 011111001 110110111 110110111 110110111 100100110 100100110 100100110 Use of formal techniques supported by Common Criteria Industry−Specific Extensions APIs Ideal vector to experiment and Virtual Machine transfer our technologies Operating System Security issues at the level of platforms (OS+VM) and applications G. Barthe Certificate translation

  5. EVEREST MOBIUS Certificate translation Summary Some recent works Platform verification Formal modeling of JavaCard VM, bytecode verifier and GlobalPlatform functional specifications and security requirements Tool support for verified bytecode verifiers Enhanced bytecode verification for secure information flow Verification environment for Java(Card) applications Operates on annotated source code and bytecode, multi-prover Annotation generation for high-level properties Application to smartcard applets and OS components Work performed in RNTL project CASTLES, FP6 IST project Inspired, and ACI S´ ecurit´ e GECCOO and SPOPS G. Barthe Certificate translation

  6. EVEREST MOBIUS Certificate translation Summary Zoom on automated security audit Security expert inspects code and checks that application obeys a given set of security rules Complex task that requires global analysis of program We have developed, implemented, and tested a method to verify mechanically security rules through synthesis and propagations of JML annotations from rules: no run-time exception at top-level no authentication within a transaction no more memory consumption than X Conclusion: many applets do not obey the rules even after extensive inspection and testing! our method ensures increased reliability with a limited overhead G. Barthe Certificate translation

  7. EVEREST MOBIUS Certificate translation Summary MOBIUS: Mobility, Ubiquity, Security Part of FET Global Computing II Integrated Project, Sept’05-Aug’09 16 partners (4 industrials) and EUP (12 partners initially). INRIA coordinator. Project objective: design a security architecture for next generation global computers, using Proof Carrying Code technology G. Barthe Certificate translation

  8. EVEREST MOBIUS Certificate translation Summary Global computers Distributed computational infrastructure aiming at providing a global and uniform access to services. Large networks of heterogeneous devices hosting extensible computational infrastructures which can be updated remotely Applet Applet Applet Applet Libraries �✁�✁�✁�✁�✁�✁�✁�✁�✁�✁�✁�✁� ✂✁✂✁✂✁✂✁✂✁✂✁✂✁✂✁✂✁✂✁✂✁✂ ☎✁☎✁☎✁☎✁☎✁☎✁☎✁☎✁☎✁☎✁☎✁☎ ✄✁✄✁✄✁✄✁✄✁✄✁✄✁✄✁✄✁✄✁✄✁✄ Libraries ✄✁✄✁✄✁✄✁✄✁✄✁✄✁✄✁✄✁✄✁✄✁✄ �✁�✁�✁�✁�✁�✁�✁�✁�✁�✁�✁�✁� ✂✁✂✁✂✁✂✁✂✁✂✁✂✁✂✁✂✁✂✁✂✁✂ ☎✁☎✁☎✁☎✁☎✁☎✁☎✁☎✁☎✁☎✁☎✁☎ Virtual Machine Virtual Machine G. Barthe Certificate translation

  9. EVEREST MOBIUS Certificate translation Summary Security issues Devices must be protected individually by means of static enforcement mechanisms No sharp separation between Trusted Computing Base and applications Trust infrastructures must allow verifiable evidence Need for expressive security policies and functional verification G. Barthe Certificate translation

  10. EVEREST MOBIUS Certificate translation Summary Possible approaches Three levels of ambition: Enhanced bytecode verification for efficient and automatic verification of generic security properties Logical verification of basic security rules: annotation assistants proof inference Logical verification of complex security and functionality properties: component validation proof construction proof checking Useful to integrate different approaches G. Barthe Certificate translation

  11. EVEREST MOBIUS Certificate translation Summary Proof Carrying Code Programs are equipped with certificates, i.e. mathematical proofs that they obey their specification, which are verified automatically at the consumer side by a proof checker: No need to trust the code producer nor the compiler Transparent to the code consumer (no run-time penalty, no proof-search) Versatile (covers a wide range of safety policies) G. Barthe Certificate translation

  12. EVEREST MOBIUS Certificate translation Summary Overall architecture Source Program Verification Advanced Environment Typing Logic-based Specification Proof Requirements Proof-Transforming Compiler Source Code Level Byte Code Level Byte Code Execution Program Advanced Typing Logic-based Proof Byte Code Specification OK Verifier Verification Environment VCGen Type-oriented Certificate Certificate Hybrid Verification Generator Certificate Conditions Logic-oriented Certificate Proof OK Checker Code Producer Code Consumer G. Barthe Certificate translation

  13. Motivation EVEREST Definition MOBIUS Case study: setting Certificate translation From high-level to RTL programs Summary Optimizations Certificate generation PCC does not impose any mechanism to generate certificates. Yet the prime means of generating certificates is certifying compilation. We are interested in building certificates using program verification, which: provides a means to enforce a wide range of policies, including security properties and functional verification is supported by verification environments based on interactive proof assistants and automated theorem provers G. Barthe Certificate translation

  14. Motivation EVEREST Definition MOBIUS Case study: setting Certificate translation From high-level to RTL programs Summary Optimizations Issue In the context of mobile and embedded code, correctness guarantees must be given for compiled programs There is currently no mechanism for bringing the benefits of source code verification to code consumers The objective of our work is to build a mechanism that enables to exploit the results of source code verification for checking compiled programs G. Barthe Certificate translation

  15. Motivation EVEREST Definition MOBIUS Case study: setting Certificate translation From high-level to RTL programs Summary Optimizations Certificate Translation Definition (Certificate Translation) Mechanism that allows transferring evidence from source programs to compiled programs (i.e. translating certificate of source programs into certificates of compiled programs) Remarks: Certificate translation is not certified compilation, nor certifying compilation. Certificate translation is relevant for interactive and automatic verification. G. Barthe Certificate translation

  16. Motivation EVEREST Definition MOBIUS Case study: setting Certificate translation From high-level to RTL programs Summary Optimizations Formal definition Certificate translators are given by two functions: a function f that maps for every program, proof obligations of the compiled program to proof obligations of the original program a function g that maps, for each proof obligation E of the compiled program, proofs of f ( E ) to proofs of E Preservation of Proof Obligations Source and compiled programs have syntactically equal proof obligations, so that the translation of certificates is the identity. G. Barthe Certificate translation

  17. Motivation EVEREST Definition MOBIUS Case study: setting Certificate translation From high-level to RTL programs Summary Optimizations Languages, program logics, and certificates We consider a simple imperative language and an intermediate RTL language with verification condition generators. Procedures annotated with their preconditions and postconditions. RTL instructions may be annotated with their preconditions (e.g. loop invariants). There is a well-formedness assumption on RTL programs, which establishes that a certain order on program points is well-founded. Certificates are left abstract, using the notion of proof algebra G. Barthe Certificate translation

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Certificate Translation in Abstract Interpretation Gilles Barthe and C esar Kunz Inria April

Certificate Translation in Abstract Interpretation Gilles Barthe and C esar Kunz Inria April

Certificate Translation in Abstract Interpretation Gilles Barthe and C esar Kunz Inria April 2, 2008 Gilles Barthe and C esar Kunz (Inria) Certificate Translation in A. I. April 2, 2008 1 / 25 Motivation: source code verification

1.05k views • 49 slides
Certificate Translation for Specification Preserving Advices Gilles Barthe and Csar Kunz INRIA

Certificate Translation for Specification Preserving Advices Gilles Barthe and Csar Kunz INRIA

Certificate Translation for Specification Preserving Advices Certificate Translation for Specification Preserving Advices Gilles Barthe and Csar Kunz INRIA Sophia Antipolis - Mditerrane FOAL 2008 Csar Kunz (with Gilles Barthe) FOAL

481 views • 44 slides
Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR

Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR

Fintech Certificate Fintech Certificate Fintech Certificate 2 Investment Case The AtonR Fintech Index is a long-only, USD-based, actively managed total return index. The pace of innovation in financial technology (Fintech) has been

616 views • 26 slides
NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No.

NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No.

NEO PA/VA system EN 54 -16 Certificate No. 2426-CPR-105 PA/VA System EN 54 -16 Certificate No. 2426-CPR-105 NEO is an innovative Public Address and Voice Alarm system that allows an easy audio installation with just one piece of equipment.

326 views • 7 slides
1 4/3/2015 AMEs In Your Area If You Decide to Renew Your Medical So Whats This Light Sport

1 4/3/2015 AMEs In Your Area If You Decide to Renew Your Medical So Whats This Light Sport

4/3/2015 New Plastic Pilot Certificate So, Where Do I Start? What we will cover today Your old paper certificate is no longer valid. What it takes to be PIC again Google Search: Replacement of Airmen Certificate What has

485 views • 35 slides
Certificate of Recognition Certificate of Recognition - Defined COR is a health and safety

Certificate of Recognition Certificate of Recognition - Defined COR is a health and safety

Certificate of Recognition Certificate of Recognition - Defined COR is a health and safety certification program National standard supported by the Canadian Federation of Construction Safety Association (CFCSA) Aimed at driving

320 views • 10 slides
Certificate of Public Advantage Presentation to the House Select Committee on the Certificate of

Certificate of Public Advantage Presentation to the House Select Committee on the Certificate of

Certificate of Public Advantage Presentation to the House Select Committee on the Certificate of Need Process and Related Hospital Issues Research Division Staff, September 14, 2011 What is a COPA? An agreement among two or more hospitals

201 views • 19 slides
Certificate of Recognition Update February 19, 2016 1 Certificate of Recognition- Defined

Certificate of Recognition Update February 19, 2016 1 Certificate of Recognition- Defined

Certificate of Recognition Update February 19, 2016 1 Certificate of Recognition- Defined COR is a workplace health and safety certification program All Legislative elements require 100% achievement National standard supported by

374 views • 9 slides
Certificate o Certi icate of Presentation Presentation This certificate is issued to Hong Guo,

Certificate o Certi icate of Presentation Presentation This certificate is issued to Hong Guo,

The 18 th International Conference on Electronic Business December 2-6, 2018, Guilin, China CERTIFICATE Certificate o Certi icate of Presentation Presentation This certificate is issued to Hong Guo, Anhui University, China Hong Guo, Anhui

1.04k views • 102 slides
1 Translation and Scalling Matrice Translation o The translation and scaling transformations may

1 Translation and Scalling Matrice Translation o The translation and scaling transformations may

3D Coordinate Systems 3D Transformation o The translation, scaling and rotation transformations used for 2D o 3D computer graphics involves the additional dimension of can be extended to three dimensions depth, allowing more realistic

435 views • 9 slides
A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status

A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status

A Distributed A Distributed Online Certificate Status Protocol Online Certificate Status Protocol Satoshi Koga, Kouichi Sakurai Satoshi Koga Kyushu University, Japan Background Background Certificate Revocation Problem Certificate

349 views • 10 slides
CRF Word Alignment & Noisy Channel Translation Machine Translation Lecture 6 Instructor:

CRF Word Alignment & Noisy Channel Translation Machine Translation Lecture 6 Instructor:

CRF Word Alignment & Noisy Channel Translation Machine Translation Lecture 6 Instructor: Chris Callison-Burch TAs: Mitchell Stern, Justin Chiu Website: mt-class.org/penn Last Time ... X Translation Translation Alignment p ( p ( ) = )

937 views • 48 slides
Global Translation Services Website translation using post-edited machine translation and

Global Translation Services Website translation using post-edited machine translation and

Global Translation Services Website translation using post-edited machine translation and crowdsourcing David Grunwald davidg@gts-translation.com twitter: @davegrun LinkedIn: davegrun March 31, 2011 David Grunwald, GTS About GTS Small

211 views • 17 slides
Certificate Transparency with Privacy Saba Eskandarian, Eran Messeri, Joe Bonneau, Dan Boneh

Certificate Transparency with Privacy Saba Eskandarian, Eran Messeri, Joe Bonneau, Dan Boneh

Certificate Transparency with Privacy Saba Eskandarian, Eran Messeri, Joe Bonneau, Dan Boneh Stanford Google NYU Stanford Certificate Authorities Public Key Certificate CA Certificate apo-CA-lypse apo-CA-lypse Certificate Transparency

722 views • 30 slides
Statistical Machine Translation Nadir Durrani 21-November-2014 Machine Translation

Statistical Machine Translation Nadir Durrani 21-November-2014 Machine Translation

Statistical Machine Translation Nadir Durrani 21-November-2014 Machine Translation www.uni-stuttart.de Problem: Automatic translation the foreign text: 2 Open Problems in Machine Translation www.uni-stuttart.de Ambiguity in translation

938 views • 44 slides
Mobile Payments Certificate 2 Mobile Payments Certificate Investment Case While the mobile

Mobile Payments Certificate 2 Mobile Payments Certificate Investment Case While the mobile

Mobile Payments Certificate 2 Mobile Payments Certificate Investment Case While the mobile payment infrastructure is now in place (NFC-enabled phones and POS terminals, various platforms such as Apple Pay), we are about to enter the second

467 views • 20 slides
How to get started How to get started with SPI with SPI Hkan Wickberg, 1999 Hkan Wickberg

How to get started How to get started with SPI with SPI Hkan Wickberg, 1999 Hkan Wickberg

FINESSE SPI Seminar, 13 of April 1999 How to get started How to get started with SPI with SPI Hkan Wickberg, 1999 Hkan Wickberg VOLVO Information Technology VOLVO Information Technology Hkan Wickberg Hkan Wickberg

829 views • 58 slides
DRAFT Fri Jun 19 15:30:07 CDT 1998

DRAFT Fri Jun 19 15:30:07 CDT 1998

320 views • 13 slides
CDLG PATHS The notion of REGULAR SOLUTION for a path dependent PDE (1) needs to deal with

CDLG PATHS The notion of REGULAR SOLUTION for a path dependent PDE (1) needs to deal with

Introduction Path dependent second order PDEs Martingale problem for second order elliptic differential operators with path dependent coefficients Time consistent dynamic risk measures P ATH - PEPENDENT PARABOLIC PDE S AND P ATH - DEPENDENT F

832 views • 43 slides
Games, Animation and VFX: Covid-19 Current information from the DfE and Ofqual What this

Games, Animation and VFX: Covid-19 Current information from the DfE and Ofqual What this

Games, Animation and VFX: Covid-19 Current information from the DfE and Ofqual What this means Immediate next steps Support for centres Current information from the DfE and Ofqual GCSE + A levels are relatively simple

785 views • 14 slides
Chapter 3: Operating-System Structures System Components Operating System Services

Chapter 3: Operating-System Structures System Components Operating System Services

Chapter 3: Operating-System Structures System Components Operating System Services System Calls System Programs System Structure Virtual Machines System Design and Implementation System Generation Operating System

981 views • 39 slides
Programs that test themselves Bertrand Meyer , ETH Zurich and Eiffel Software Arno Fiva, Ilinca

Programs that test themselves Bertrand Meyer , ETH Zurich and Eiffel Software Arno Fiva, Ilinca

Programs that test themselves Bertrand Meyer , ETH Zurich and Eiffel Software Arno Fiva, Ilinca Ciupa, Andreas Leitner, and Yi Wei, ETH Zurich Emmanuel Stapf, Eiffel Software Presenter: Papastergiou Christos Introduction Modern engineering

416 views • 24 slides
Rights & Privileges of Public Library Employees MARTI A. MINOR, J.D., M.L.I.S. LIBRARY LAW

Rights & Privileges of Public Library Employees MARTI A. MINOR, J.D., M.L.I.S. LIBRARY LAW

Rights & Privileges of Public Library Employees MARTI A. MINOR, J.D., M.L.I.S. LIBRARY LAW CONSULTING, LLC MAY 2016 Disclaimer These materials are provided as general information only. No legal advice is being given by the Georgia

238 views • 12 slides
2/14/2017

2/14/2017

2/14/2017

338 views • 9 slides

More recommend