Secuirty of Multithreaded Programs by Compilation
Artikel i vetenskaplig tidskrift, 2009

Information security is a pressing challenge for mobile code technologies. In order to claim end-to-end security of mobile code, it is necessary to establish that the code neither intentionally nor accidentally propagates sensitive information to an adversary. Although mobile code is commonly multithreaded low-level code, the literature is lacking enforcement mechanisms that ensure information security for such programs. This article offers a modular solution to the security of multithreaded programs. The modularity is three-fold: we give modular extensions of sequential semantics, sequential security typing, and sequential security-type preserving compilation that allow us enforcing security for multithreaded programs. Thanks to the modularity, there are no more restrictions on multithreaded source programs than on sequential ones, and yet we guarantee that their compilations are provably secure for a wide class of schedulers.

compilation

Multithreaded

low-level code

information-flow

Författare

Gilles Barthe

Tamara Rezk

Alejandro Russo

Chalmers, Data- och informationsteknik

Andrei Sabelfeld

Chalmers, Data- och informationsteknik

Special Issue of ACM Transactions on Information and System Security (TISSEC)

Ämneskategorier

Datavetenskap (datalogi)

DOI

10.1145/1805974.1805977

Mer information

Senast uppdaterat

2018-12-13