CMV: Automatic verification of complete mediation for java virtual machines

Proceedings of the 2008 ACM Symposium on Information, Computer and Communications Security, ASIACCS '08

Volumn , Issue , 2008, Pages 100-111

  Sistla, A Prasad ^a   Venkatakrishnan, V N ^a   Zhou, Michelle ^a   Branske, Hilary ^a  

^a 1120 Science and Engineering Offices   (United States)

Author keywords

Complete mediation; Runtime monitoring

Indexed keywords

AUTOMATIC VERIFICATION; BYTECODES; JAVA BYTE CODES; JAVA LIBRARY; JAVA VIRTUAL MACHINES; MONITORING SYSTEM; RUNTIME MONITORING; SECURITY PROPERTIES; STANDARD LIBRARIES; SYSTEM SECURITY; SYSTEM VERIFICATIONS; VERIFICATION TECHNIQUES;

LIBRARIES; NETWORK COMPONENTS;

MONITORING;

EID: 77952358659     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1368310.1368327     Document Type: Conference Paper

References (31)

1. G. Ammons, R. Bodik, and J. Larus. Mining specifications. In ACM Symposium on Principles of Programming Languages (POPL), 2002.
2. K. Ashcraft and D. Engler. Using programmer-written compiler extensions to catch security holes. In IEEE Symposium on Security and Privacy (SSP), May 2002.
3. T. Ball and S. K. Rajamani. Bebop: A symbolic model checker for boolean programs. In 7th International SPIN Workshop on SPIN Model Checking and Software Verification, London, UK, 2000.
4. T. Ball and S. K. Rajamani. The SLAM toolkit. In Computer Aided Verification CAV, New York-Berlin-Heidelberg, July 2001.
5. G. Brat, K. Havelund, S. Park, and W. Visser. Java PathFinder: Second generation of a Java model checker. In Post-CAV 2000 Workshop on Advances in Verification, July 2000.
6. H. Chen and D. Wagner. MOPS: an infrastructure for examining security properties of software. In ACM conference on Computer and Communications Security (CCS), 2002.
7. E. Clarke, E. Emerson, and A. Sistla. Automatic verification of finite-state concurrent systems using temporal logic specification. In ACM Transactions on Programming Languages and Systems (TOPLAS), 1986.
8. J. Corbett, M. Dwyer, J. Hatcliff, C. Pasareanu, Robby, S. Laubach, and H. Zheng. BANDERA: extracting finite-state models from Java source code. In 22nd International Conference on Software Engineering (ICSE), Limerick, Ireland, June 2000.
9. D. Engler, B. Chelf, A. Chou, and S. Hallem. Checking system rules using system-specific, programmer-written compiler extensions. In USENIX Symposium on Operating Systems Design and Implementation (OSDI), 2000.
10. U. Erlingsson and F. B. Schneider. IRM enforcement of java stack inspection. In IEEE Symposium on Security and Privacy, Oakland, California, May 2000.
11. D. Evans and A. Tywman. Flexible policy directed code safety. In IEEE Symposium on Security and Privacy, Oakland, California, may 1999.
12. P. W. L. Fong and R. D. Cameron. Proof linking: Distributed verification of java classfiles in the presence of multiple classloaders. In USENIX Java Virtual Machine Research and Technology Symposium (JVM'01), 2001.
13. T. Fraser, J. Nick L. Petroni, and W. A. Arbaugh. Applying flow-sensitive cqual to verify minix authorization check placement. In PLAS '06: Proceedings of the 2006 workshop on Programming languages and analysis for security, New York, NY, USA, 2006.
14. V. Ganapathy, T. Jaeger, and S. Jha. Retrofitting legacy code for authorization policy enforcement. In SP'06: Proceedings of the 2006 IEEE Symposium on Security and Privacy, Oakland, California, USA, May 2006.
15. V. Ganapathy, D. King, T. Jaeger, and S. Jha. Mining security sensitive operations in legacy code using concept analysis. In ICSE'07: Proceedings of the 29th International Conference on Software Engineering, Minneapolis, Minnesota, USA, May 2007.
16. L. Gong, M. Mueller, H. Prafullchandra, and R. Schemers. Going beyond the sandbox: An overview of the new security architecture in the java development kit 1.2. In USENIX Symposium on Internet Technologies and Systems, December 1997.
17. T. A. Henzinger, R. Jhala, R. Majumdar, G. C. Necula, G. Sutre, and W. Weimer. Temporal-safety proofs for systems code. In Computer Aided Verification CAV, 2002.
18. G. Holzmann. The model checker spin. IEEE Transactions on Software Engineering, 1997.
19. T. Jensen, D. Le Metayer, and T. Thorn. Verification of control flow based security properties. In IEEE Symposium on Security and Privacy, 1999.
20. L. Koved, M. Pistoia, and A. Kershenbaum. Access rights analysis for Java. In ACM Conference on Object-Oriented Programming, Systems, Languages, and Applications (OOPSLA 2002), 2002.
21. D. Larochelle and D. Evans. Statically detecting likely buffer overflow vulnerabilities. In USENIX Security Symposium, 2001.
22. G. Necula. Proof-carrying code. In ACM Symposium on Principles of Programming Languages (POPL), 1997.
23. S. Owre, S. Rajan, J. Rushby, N. Shankar, and M. Srivas. PVS: Combining specification, proof checking, and model checking. In Computer-Aided Verification, CAV '96, New Brunswick, NJ, 1996.
24. T. Reps, S. Horwitz, and M. Sagiv. Precise interprocedural dataflow analysis via graph reachability. In 22nd ACM SIGPLAN-SIGACT symposium on Principles of programming languages, 1995.
25. J. Saltzer and S. M. D. The protection of information in computer systems. proceedings of the IEEE, September 1975.
26. R. Sekar, V. N. Venkatakrishnan, S. Basu, S. Bhatkar, and D. C. DuVarney. Model carrying code: A practical approach for safe execution of untrusted applications. In ACM Symposium on Operating Systems Principles (SOSP), 2003.
27. U. Shankar, K. Talwar, J. S. Foster, and D. Wagner. Detecting format-string vulnerabilities with type qualifiers. In USENIX Security Symposium, 2001.
28. R. Vallée-Rai and L. H. et al. SOOT - a Java optimization framework. In Proceedings of CASCON 1999, pages 125-135, 1999.
29. V. N. Venkatakrishnan, R. Peri, and R. Sekar. Empowering mobile code using expressive security policies. In New Security Paradigms Workshop (NSPW), 2002.
30. D. S. Wallach and E. W. Felten. Understanding java stack inspection. In 1998 IEEE Symposium on Security and Privacy, 1998.
31. X. Zhang, A. Edwards, and T. Jaeger. Using cqual for static analysis of authorization hook placement. In USENIX Security Symposium, 2002.