Progress-Sensitive Security for SPARK

“…SecCSL [Ernst and Murray 2019] Insecurity Separation logic (InsecSL) (Section 4) This kind of compositionality is common, however, to formal program logics (and type systems) used to prove the absence of information leaks [Broberg and Sands 2010;Ernst and Murray 2019;Murray et al 2018;Myers 1999], as well as to static analysis techniques for the same purpose [Rafnsson et al 2016]. Unfortunately, because they are necessarily over-approximate, these techniques may suffer from false alarms, unlike our under-approximate approach.…”

Compositional Vulnerability Detection with Insecurity Separation Logic

“…SecCSL [Ernst and Murray 2019] Insecurity Separation logic (InsecSL) (Section 4) This kind of compositionality is common, however, to formal program logics (and type systems) used to prove the absence of information leaks [Broberg and Sands 2010;Ernst and Murray 2019;Murray et al 2018;Myers 1999], as well as to static analysis techniques for the same purpose [Rafnsson et al 2016]. Unfortunately, because they are necessarily over-approximate, these techniques may suffer from false alarms, unlike our under-approximate approach.…”

Compositional Vulnerability Detection with Insecurity Separation Logic

“…IFC tools IFC research has produced compilers capable of preserving confidentiality of data: Jif [46] and Paragon [12] (based on Java), and FlowCaml [60] (based on Caml). The SPARK language presents a IFC analysis which has been extended to guarantee progress-sensitive non-inference [51]. JSFlow [23] is one of the state-of-the-art IFC system for the web (based on JavaScript).…”

MAC A verified static information-flow control library

Information Flow Security Certification for SPARK Programs