SIFA: A Tool for Evaluation of High-Grade Security Devices

McComb, Tim; Wildman, Luke

doi:10.1007/11506157_20

Cited by 9 publications

(7 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Foremost among such tools is SIFA (Secure Information Flow Analyser), an open-source software tool 1 for performing modespecific reachability analyses of electronic circuits [13]. SIFA traces component connectivity and presents the user with a list of those paths through the circuit that connect selected data sources and sinks in particular modes.…”

Section: Hardware Information Flow Analysismentioning

confidence: 99%

“…The current hardware-oriented evaluation process, using an analysis tool such as SIFA, involves several steps [13]. Firstly the device's block diagram or circuitry schematic is entered into the tool, which converts it into a directed graph representation.…”

Section: Problem Statementmentioning

confidence: 99%

“…For our purposes we assume the existence of a tool such as SIFA [13], capable of performing mode-specific reachability analyses of electronic circuits modelled as directed graphs [14]. A hardware circuit can be represented as a graph with its vertices P being the set of all physical pins (connectors) on the printed circuit board [14].…”

Section: Identifying Information Flow Through Electronic Circuitrymentioning

confidence: 99%

“…To save effort, software tools can automate much of this tedious task [13], although the overall assessment still relies on the security evaluator's skill at interpreting the results. However, the entire procedure is stymied when embedded microprocessors are encountered.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Integrating hardware and software information flow analyses

Fidge

Corney

2009

SIGPLAN Not.

View full text Add to dashboard Cite

Security-critical communications devices must be evaluated to the highest possible standards before they can be deployed. This process includes tracing potential information flow through the device's electronic circuitry, for each of the device's operating modes. Increasingly, however, security functionality is being entrusted to embedded software running on microprocessors within such devices, so new strategies are needed for integrating information flow analyses of embedded program code with hardware analyses. Here we show how standard compiler principles can augment highintegrity security evaluations to allow seamless tracing of information flow through both the hardware and software of embedded systems. This is done by unifying input/output statements in embedded program execution paths with the hardware pins they access, and by associating significant software states with corresponding operating modes of the surrounding electronic circuitry.

show abstract

Section: Hardware Information Flow Analysismentioning

confidence: 99%

Section: Problem Statementmentioning

confidence: 99%

Section: Identifying Information Flow Through Electronic Circuitrymentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Integrating hardware and software information flow analyses

Fidge

Corney

2009

SIGPLAN Not.

View full text Add to dashboard Cite

show abstract

“…The only existing implementation of a multi-source and multi-sink minimum vertex cut algorithm we are familiar with is the deterministic one used in the Secure Information Flow Analyzer [11]. SIFA is an open-source software tool for analysing potential information flow through electronic circuitry.…”

Section: Introductionmentioning

confidence: 99%

A genetic algorithm for the multi-source and multi-sink minimum vertex cut problem and its applications

Tang

Fidge

2009

2009 IEEE Congress on Evolutionary Computation

View full text Add to dashboard Cite

We present a new penalty-based genetic algorithm for the multi-source and multi-sink minimum vertex cut problem, and illustrate the algorithm's usefulness with two real-world applications. It is proved in this paper that the genetic algorithm always produces a feasible solution by exploiting some domain-specific knowledge. The genetic algorithm has been implemented on the example applications and evaluated to show how well it scales as the problem size increases.

show abstract