Abstract | ||
---|---|---|
Protecting the confidentiality of information stored in a computer system or transmitted over a public network is a relevant problem in computer security. The approach of information flow analysis involves performing a static analysis of the program with the aim of proving that there will not be leaks of sensitive information. In this paper we propose a new domain that combines variable dependency analysis, based on propositional formulas, and variables' value analysis, based on polyhedra. The resulting analysis is strictly more accurate than the state of the art abstract interpretation based analyses for information leakage detection. Its modular construction allows to deal with the tradeoff between efficiency and accuracy by tuning the granularity of the abstraction and the complexity of the abstract operators. |
Year | DOI | Venue |
---|---|---|
2011 | 10.1007/978-3-642-18381-2_45 | SOFSEM |
Keywords | Field | DocType |
resulting analysis,information flow analysis,sensitive information,information leakage detection,computer security,art abstract interpretation,abstract operator,value analysis,information leakage analysis,variable dependency analysis,static analysis,dependence analysis,information flow | Information flow (information theory),Data mining,Information leakage,Computer science,Abstract interpretation,Static analysis,Theoretical computer science,Granularity,Information sensitivity,Propositional variable,Propositional formula,Distributed computing | Conference |
Volume | ISSN | Citations |
6543 | 0302-9743 | 8 |
PageRank | References | Authors |
0.51 | 13 | 2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Matteo Zanioli | 1 | 52 | 2.90 |
Agostino Cortesi | 2 | 791 | 66.19 |