Hypercollecting semantics and its application to static analysis of information flow

Assaf, Mounir; Naumann, David A.; Signoles, Julien; Totel, Éric; Tronel, Frédéric

doi:10.1145/3093333.3009889

Cited by 16 publications

(16 citation statements)

References 97 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Mantel considers a range of security properties via closure operators [24]. The limited usefulness of trace refinement for proving NI even for deterministic programs, as in the chain (12), is discussed by Assaf and Pasqua [3,27]. The formulation of possibilistic noninterference as∼;R;∼ = R;∼ is due to Joshi and Leino [22] and resembles the formulation of Roscoe et al [35].…”

Section: Related Workmentioning

confidence: 99%

“…A primary precursor to this paper is the dissertion work of Assaf, which targets refinement chains in the style of abstract interpretation [13,11]. Assaf's work [3] introduced a set-of-sets lifted semantics from which our h-transformer semantics is adapted. In keeping with the focus on static analysis, Assaf shows the lifted semantics is an approximation of the underlying one.…”

Section: Related Workmentioning

confidence: 99%

“…Their inequational result corresponding to our Theorem is proved, in the loop case, using explicit induction on approximation chains. See the proof of Theorem 1 in[3] 6. Displayed formula {{| c | }T | T ∈ T} ⊆ c T following Theorem 1 of[3].…”

mentioning

confidence: 99%

“…See the proof of Theorem 1 in[3] 6. Displayed formula {{| c | }T | T ∈ T} ⊆ c T following Theorem 1 of[3].…”

mentioning

confidence: 99%

See 3 more Smart Citations

Whither Specifications as Programs

Naumann

Ngo

2019

Unifying Theories of Programming

Self Cite

View full text Add to dashboard Cite

Unifying theories distil common features of programming languages and design methods by means of algebraic operators and their laws. Several practical concerns -e.g., improvement of a program, conformance of code with design, correctness with respect to specified requirements -are subsumed by the beautiful notion that programs and designs are special forms of specification and their relationships are instances of logical implication between specifications. Mathematical development of this idea has been fruitful but limited to an impoverished notion of specification: trace properties. Some mathematically precise properties of programs, dubbed hyperproperties, refer to traces collectively. For example, confidentiality involves knowledge of possible traces. This article reports on both obvious and surprising results about lifting algebras of programming to hyperproperties, especially in connection with loops, and suggests directions for further research. The technical results are: a compositional semantics, at the hyper level, of imperative programs with loops, and proof that this semantics coincides with the direct image of a standard semantics, for subset closed hyperproperties.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

mentioning

confidence: 99%

“…See the proof of Theorem 1 in[3] 6. Displayed formula {{| c | }T | T ∈ T} ⊆ c T following Theorem 1 of[3].…”

mentioning

confidence: 99%

See 2 more Smart Citations

Whither Specifications as Programs

Naumann

Ngo

2019

Unifying Theories of Programming

Self Cite

View full text Add to dashboard Cite

show abstract

“…If a relational analyzer (Cousot & Halbwachs, 1978) was desired, one could point exactly where in the calculation this information was lost via the independent attributes abstraction, and correct it locally. E.g., recent results in information flow analysis show how to obtain more precise analyzers in exactly this way: by pinpointing and correcting the loss of precision after deriving the analysis using the calculational method (Assaf et al, 2017).…”

Section: Using Independent Attributes Explicitlymentioning

confidence: 99%

Constructive Galois Connections

Darais¹,

Horn²

2019

J. Funct. Prog.

View full text Add to dashboard Cite

Galois connections are a foundational tool for structuring abstraction in semantics and their use lies at the heart of the theory of abstract interpretation. Yet, mechanization of Galois connections using proof assistants remains limited to restricted modes of use, preventing their general application in mechanized metatheory and certified programming.This paper presents constructive Galois connections, a variant of Galois connections that is effective both on paper and in proof assistants; is complete with respect to a large subset of classical Galois connections; and enables more general reasoning principles, including the "calculational" style advocated by Cousot.To design constructive Galois connections we identify a restricted mode of use of classical ones which is both general and amenable to mechanization in dependently-typed functional programming languages. Crucial to our metatheory is the addition of monadic structure to Galois connections to control a "specification effect." Effectful calculations may reason classically, while pure calculations have extractable computational content. Explicitly moving between the worlds of specification and implementation is enabled by our metatheory.To validate our approach, we provide two case studies in mechanizing existing proofs from the literature: the first uses calculational abstract interpretation to design a static analyzer; the second forms a semantic basis for gradual typing. Both mechanized proofs closely follow their original paper-and-pencil counterparts, employ reasoning principles not captured by previous mechanization approaches, support the extraction of verified algorithms, and are novel.

show abstract

Abstract Semantic Dependency

Cousot

2019

Static Analysis

View full text Add to dashboard Cite

Hypercollecting semantics and its application to static analysis of information flow

Cited by 16 publications

References 97 publications

Whither Specifications as Programs

Whither Specifications as Programs

Constructive Galois Connections

Abstract Semantic Dependency

Contact Info

Product

Resources

About