Building Certified Static Analysers by Modular Construction of Well-founded Lattices

Pichardie, David

doi:10.1016/j.entcs.2008.04.064

Cited by 12 publications

(12 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…On the one hand, a direct proof of the fixpoint iterator would be very hard: in particular, it would require difficult proofs over the widening operators of all abstract domains [29]. On the other hand, we can adapt the iteration strategy, optimize the algorithm and so on with no additional proof effort.…”

Section: Soundness Of the Abstract Interpretermentioning

confidence: 99%

“…Using the Coq proof assistant and following the orthodox approach based on Galois connections, he runs into difficulties with α abstraction functions being nonconstructive, and with the calculation of abstract operators being poorly supported by Coq. Later, Pichardie's Ph.D. thesis [28,30] mechanizes the γ -only presentation of abstract interpretation that we use.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Verified Abstract Interpretation Techniques for Disassembling Low-level Self-modifying Code

2016

Self Cite

View full text Add to dashboard Cite

Version étendue de l'article de la conférence ITP 2014International audienceStatic analysis of binary code is challenging for several reasons. In particular, standard static analysis techniques operate over control-flow graphs, which are not available when dealing with self-modifying programs which can modify their own code at runtime. We formalize in the Coq proof assistant some key abstract interpretation techniques that automatically extract memory safety properties from binary code. Our analyzer is formally proved correct and has been run on several self-modifying challenges, provided by Cai et al. in their PLDI 2007 article

show abstract

Section: Soundness Of the Abstract Interpretermentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Verified Abstract Interpretation Techniques for Disassembling Low-level Self-modifying Code

2016

Self Cite

View full text Add to dashboard Cite

show abstract

“…First approaches to verifying static analyses with Coq considered the classical monotone data flow analysis framework, including the groundbreaking work on analyses supporting optimizations in the CompCert optimizing compiler [24]. Mechanized verification of the more general abstract interpretation has later been studied [25]- [27]. The presentations in [3], [12] provide introductions into the approach and are accompanied by basic Coq developments for standard analyses, including, e.g., liveness analysis and interval analysis.…”

Section: B Certified Static Data Flow Analysismentioning

confidence: 99%

Certified Information Flow Analysis of Service Implementations

Heinze

Türker²

2018

2018 IEEE 11th Conference on Service-Oriented Computing and Applications (SOCA)

View full text Add to dashboard Cite

Process analysis enables the certification of distributed business processes using automated process compliance checks. In such an auditing scenario, analysis correctness is key but is usually taken for granted. We therefore argue in this paper for the idea of certified analysis. As is shown by the example of a static information flow analysis and its accompanying Coq development, certified analysis of distributed business processes is feasible and provides machine-checkable correctness certificates and thus helps in increasing thrustworthiness of automated process compliance audits.• We address a heap-based data model for process data as prevalent in state-of-the-art process engines.• We present a formal development for proving the correctness of unified points-to/taint analysis in line with most recent research [4].

show abstract

“…The formalization of Galois connections in proof assistants has been studied in previous work by several authors (e.g., [5,18]), and we have relied on existing libraries of constructors for building abstract domains.…”

Section: Abstract Domainsmentioning

confidence: 99%

Certified Abstract Interpretation with Pretty-Big-Step Semantics

Bodin

Jensen

Schmitt

2015

Proceedings of the 2015 Conference on Certified Programs and Proofs

View full text Add to dashboard Cite

This paper describes an investigation into developing certified abstract interpreters from big-step semantics using the Coq proof assistant. We base our approach on Schmidt's abstract interpretation principles for natural semantics, and use a pretty-big-step (PBS) semantics, a semantic format proposed by Charguéraud. We propose a systematic representation of the PBS format and implement it in Coq. We then show how the semantic rules can be abstracted in a methodical fashion, independently of the chosen abstract domain, to produce a set of abstract inference rules that specify an abstract interpreter. We prove the correctness of the abstract interpreter in Coq once and for all, under the assumption that abstract operations faithfully respect the concrete ones. We finally show how to define correct-by-construction analyses: their correction amounts to proving they belong to the abstract semantics.

show abstract

Building Certified Static Analysers by Modular Construction of Well-founded Lattices

Cited by 12 publications

References 13 publications

Verified Abstract Interpretation Techniques for Disassembling Low-level Self-modifying Code

Verified Abstract Interpretation Techniques for Disassembling Low-level Self-modifying Code

Certified Information Flow Analysis of Service Implementations

Certified Abstract Interpretation with Pretty-Big-Step Semantics

Contact Info

Product

Resources

About