Flow logics for constraint based analysis

Nielson, Hanne Riis; Nielson, Flemming

doi:10.1007/bfb0026426

Cited by 13 publications

(7 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Using the techniques of [62] the analysis is transformed into a verbose specification [63]; this means that ψ and ϑ become global components. This is obtained by adding further labels to the syntax and making every analysis component global by using the new labels to link the values of the components to specific places in the syntax.…”

Section: The Implementationmentioning

confidence: 99%

Static validation of security protocols

Bodei

Buchholtz

Degano

et al. 2005

JCS

Self Cite

View full text Add to dashboard Cite

We methodically expand protocol narrations into terms of a process algebra in order to specify some of the checks that need to be made in a protocol. We then apply static analysis technology to develop an automatic validation procedure for protocols. Finally, we demonstrate that these techniques suffice to identify several authentication flaws in symmetric and asymmetric key protocols such as Needham-Schroeder symmetric key, Otway-Rees, Yahalom, Andrew Secure RPC, Needham-Schroeder asymmetric key, and Beller-Chang-Yacobi MSR.

show abstract

Section: The Implementationmentioning

confidence: 99%

Static validation of security protocols

Bodei

Buchholtz

Degano

et al. 2005

JCS

Self Cite

View full text Add to dashboard Cite

show abstract

“…This paper presents an approach to program analysis that allows the simultaneous formulation of techniques for Control and Data Flow Analysis while taking the overall path recommended by Abstract Interpretation. To keep the specification compact we present the Control Flow Analysis in the form of a succinct flow logic [17]. Throughout the development we maintain a clear separation between environment-like data and store-like data so that the analysis more clearly corresponds to the semantics.…”

Section: Introductionmentioning

confidence: 99%

Interprocedural Control Flow Analysis

Nielson

1999

Programming Languages and Systems

Self Cite

View full text Add to dashboard Cite

Control Flow Analysis is a widely used approach for analysing functional and object oriented programs. Once the applications become more demanding also the analysis needs to be more precise in its ability to deal with mutable state (or side-effects) and to perform polyvariant (or context-sensitive) analysis. Several insights in Data Flow Analysis and Abstract Interpretation show how to do so for imperative programs but the techniques have not had much impact on Control Flow Analysis. We show how to incorporate a number of key insights from Data Flow Analysis (involving such advanced interprocedural techniques as call strings and assumption sets) into Control Flow Analysis (using Abstract Interpretation to induce the analyses from a collecting semantics).

show abstract

“…In contrast, we have also shown how to handle interprocedural data flow analysis in a natural manner; this is due to the fact that we use the general setting of Flow Logic [18] and constraint-based analysis. Research on mechanical verification of the Java byte code verifier includes that of Barthe et al [2] who have shown how to formalise the Java Card byte code verification in the proof assistant Coq by isolating the byte code verification in an executable semantics of the language.…”

Section: Related Workmentioning

confidence: 89%

“…Formula (18) reads: if the abstract state approximate all earlier states (well-founded induction hypothesis); and evolves, by performing a return instruction, into ; then, approximates as well.…”

Section: Inductionmentioning

confidence: 99%

Extracting a data flow analyser in constructive logic

Cachera

Jensen

Pichardie

et al. 2005

Theoretical Computer Science

View full text Add to dashboard Cite

A constraint-based data flow analysis is formalised in the specification language of the Coq proof assistant. This involves defining a dependent type of lattices together with a library of lattice functors for modular construction of complex abstract domains. Constraints are represented in a way that allows for both efficient constraint resolution and correctness proof of the analysis with respect to an operational semantics. The proof of existence of a solution to the constraints is constructive which means that the extraction mechanism of Coq provides a provably correct data flow analyser in Ocaml from the proof. The library of lattices and the representation of constraints are defined in an analysisindependent fashion that provides a basis for a generic framework for proving and extracting static analysers in Coq.

show abstract

Flow logics for constraint based analysis

Cited by 13 publications

References 23 publications

Static validation of security protocols

Static validation of security protocols

Interprocedural Control Flow Analysis

Extracting a data flow analyser in constructive logic

Contact Info

Product

Resources

About