论文信息 - Formal Specification and Verification of Resource Bound Security Using PVS

Formal Specification and Verification of Resource Bound Security Using PVS

Resource usage abuse is a major security concern for computer systems that run programs uploaded from other computers. In the absence of any guarantee on resource usage bounds, we cannot have any confidence that the external codes have been supplied by trustworthy computers or the codes have not been tempered with by a third party. In a previous report [1], we described the TINMAN security architecture and a tool set for enforcing resource safety of external C code. In this paper, we detail the formalization of resource specification and verification of the resource safety properties. This formal framework is based on an extended Hoare logic with resource usage variables. We formalize the construct (tasks) and resource safety assertions (resource specifications) in a proof system that is built on the PVS theorem prover. We also discuss the proof strategies for different types of resource usage verification tasks that are important for the mechanization of TINMAN.

Aloysius K. Mok | Weijiang Yu | A. Mok | Weijiang Yu

[1] Frank van Harmelen,et al. Extensions to the Rippling-Out Tactic for Guiding Inductive Proofs , 1990, CADE.

[2] Aloysius K. Mok,et al. Enforcing resource bound safety for mobile SNMP agents , 2002, 18th Annual Computer Security Applications Conference, 2002. Proceedings..

[3] Aloysius K. Mok,et al. TINMAN: A Resource Bound Security Checking System for Mobile Code , 2002, ESORICS.

[4] Natarajan Shankar,et al. PVS: A Prototype Verification System , 1992, CADE.

[5] Dieter Gollmann,et al. Computer Security — ESORICS 2002 , 2002, Lecture Notes in Computer Science.

[6] George C. Necula,et al. The design and implementation of a certifying compiler , 1998, PLDI.

[7] Karl Crary,et al. Resource bound certification , 2000, POPL '00.

[8] Joost-Pieter Katoen,et al. A probabilistic extension of UML statecharts: Specification and Verification. , 2002 .

[9] Karl Crary,et al. From system F to typed assembly language , 1999, TOPL.

[10] George C. Necula,et al. Proof-carrying code , 1997, POPL '97.

[11] Neil Evans,et al. Analysing Time Dependent Security Properties in CSP Using PVS , 2000, ESORICS.

[12] M. Hofmann. A Type System for Bounded Space and Functional In-Place Update , 2000, Nord. J. Comput..

[13] Jozef Hooman,et al. Correctness of Real Time Systems by Construction , 1994, FTRTFT.