论文信息 - A portable virtual machine target for proof-carrying code

A portable virtual machine target for proof-carrying code

Virtual machines and proof-carrying code provide two techniques that have been used independently to provide safety for mobile code. Both these techniques have strengths and limitations. Existing virtual machines, such as the Java VM, have several drawbacks. First, the effort required for safety verification is considerable. Second, and more subtly, the need to provide such verification by the code consumer inhibits the amount of optimization that can be performed by the code producer. This in turn makes just-in-time compilation surprisingly expensive. Proof-carrying code, on the other hand, has its own set of limitations, among which are the size of proofs and the fact that the certified code is no longer machine independent. By combining the two techniques, we are able to overcome these limitations. Our hybrid safe-code solution uses a virtual machine that has been designed specifically to support proof-carrying code, while simultaneously providing efficient just-in-time compilation and target-machine independence. In particular, our approach reduces the complexity of the required proofs, resulting in fewer proof obligations that need to be discharged at the target machine.

[1] Michael Franz,et al. The source is the proof , 2002, NSPW '02.

[2] Robert Wahbe,et al. Efficient and language-independent mobile programs , 1996, PLDI '96.

[3] Andrew W. Appel,et al. Foundational proof-carrying code , 2001, Proceedings 16th Annual IEEE Symposium on Logic in Computer Science.

[4] Phil Winterbottom,et al. The design of the Inferno virtual machine , 1997 .

[5] George C. Necula,et al. Proof-carrying code , 1997, POPL '97.

[6] Jeffery von Ronne,et al. SafeTSA: a type safe and referentially secure mobile-code representation based on static single assignment form , 2001, PLDI '01.

[7] Amer Diwan,et al. Compiler support for garbage collection in a statically typed language , 1992, PLDI '92.

[8] Egon Börger,et al. Java and the Java Virtual Machine: Definition, Verification, Validation , 2001 .

[9] Frank Yellin,et al. The Java Virtual Machine Specification , 1996 .

[10] George C. Necula,et al. Oracle-based checking of untrusted software , 2001, POPL '01.

[11] Christian H. Stork,et al. Project TRANSPROSE: reconciling mobile-code security with execution efficiency , 2001, Proceedings DARPA Information Survivability Conference and Exposition II. DISCEX'01.

[12] Karl Crary,et al. From system F to typed assembly language , 1999, TOPL.