Sarna-Starosta, 2005 - Google Patents
Constraint-based analysis of security propertiesSarna-Starosta, 2005
- Document ID
- 17763849765986822528
- Author
- Sarna-Starosta B
- Publication year
External Links
Snippet
Abstract Model checking is a verification method developed to test finite-state systems (eg, communication protocols, hardware circuits) against properties expressed as temporal logic formulas. The method has proved successful in finding design flaws in many real-life …
- 238000004458 analytical method 0 title abstract description 46
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/577—Assessing vulnerabilities and evaluating computer system security
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/36—Preventing errors by testing or debugging software
- G06F11/3604—Software analysis for verifying properties of programs
- G06F11/3608—Software analysis for verifying properties of programs using formal methods, e.g. model checking, abstract interpretation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/36—Preventing errors by testing or debugging software
- G06F11/3668—Software testing
- G06F11/3672—Test management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/562—Static detection
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
- G06F21/77—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in smart cards
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F17/00—Digital computing or data processing equipment or methods, specially adapted for specific functions
- G06F17/50—Computer-aided design
- G06F17/5009—Computer-aided design using simulation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/22—Detection or location of defective computer hardware by testing during standby operation or during idle time, e.g. start-up testing
- G06F11/2205—Detection or location of defective computer hardware by testing during standby operation or during idle time, e.g. start-up testing using arrangements specific to the hardware being tested
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/28—Error detection; Error correction; Monitoring by checking the correct order of processing
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F2211/00—Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
- G06F2211/009—Trust
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRICAL DIGITAL DATA PROCESSING
- G06F2207/00—Indexing scheme relating to methods or arrangements for processing data by operating upon the order or content of the data handled
- G06F2207/72—Indexing scheme relating to groups G06F7/72 - G06F7/729
- G06F2207/7219—Countermeasures against side channel or fault attacks
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Ramakrishnan et al. | Model-based analysis of configuration vulnerabilities | |
| Pistoia et al. | A survey of static analysis methods for identifying security vulnerabilities in software systems | |
| Sekar et al. | Model-carrying code: a practical approach for safe execution of untrusted applications | |
| Yamaguchi et al. | Modeling and discovering vulnerabilities with code property graphs | |
| Lam et al. | Context-sensitive program analysis as database queries | |
| US7437718B2 (en) | Reviewing the security of trusted software components | |
| Hicks et al. | A logical specification and analysis for SELinux MLS policy | |
| Sarna-Starosta et al. | Policy analysis for security-enhanced linux | |
| Sotirov | Automatic vulnerability detection using static source code analysis | |
| Pistoia et al. | Beyond stack inspection: A unified access-control and information-flow security model | |
| Rees | A security kernel based on the lambda-calculus | |
| US20240179181A1 (en) | Authorization policy evaluation | |
| US12261888B2 (en) | Authorization policy validation | |
| US12425455B2 (en) | Authorization policy analysis | |
| Salvaneschi et al. | Language-integrated privacy-aware distributed queries | |
| Veronese et al. | Webspec: Towards machine-checked analysis of browser security mechanisms | |
| CN113051624B (en) | Intelligent contract information flow integrity verification method and system based on type detection | |
| Nauman et al. | Remote attestation of attribute updates and information flows in a ucon system | |
| Leonard et al. | Modelling access propagation in dynamic systems | |
| Franklin et al. | Scalable parametric verification of secure systems: How to verify reference monitors without worrying about data structure size | |
| Sarna-Starosta et al. | Constraint-based model checking of data-independent systems | |
| Nicolay et al. | Static detection of user-specified security vulnerabilities in client-side javascript | |
| Sarna-Starosta | Constraint-based analysis of security properties | |
| Ridge | Verifying distributed systems: the operational approach | |
| Chou | Static analysis for bug finding in systems software |