Integrating hardware and software information flow analyses
| Data(s) |
2009
|
|---|---|
| Resumo |
Security-critical communications devices must be evaluated to the highest possible standards before they can be deployed. This process includes tracing potential information flow through the device's electronic circuitry, for each of the device's operating modes. Increasingly, however, security functionality is being entrusted to embedded software running on microprocessors within such devices, so new strategies are needed for integrating information flow analyses of embedded program code with hardware analyses. Here we show how standard compiler principles can augment high-integrity security evaluations to allow seamless tracing of information flow through both the hardware and software of embedded systems. This is done by unifying input/output statements in embedded program execution paths with the hardware pins they access, and by associating significant software states with corresponding operating modes of the surrounding electronic circuitry. |
| Formato |
application/pdf |
| Identificador | |
| Publicador |
Association for Computing Machinery |
| Relação |
http://eprints.qut.edu.au/27650/1/c27650.pdf http://www.cse.psu.edu/lctes09/ Fidge, Colin J. & Corney, Diane (2009) Integrating hardware and software information flow analyses. In ACM SIGPLAN/SIGBED 2009 Conference on Languages, Compilers, and Tools for Embedded Systems (LCTES 2009), 19-20 June 2009, Trinity College, Dublin. http://purl.org/au-research/grants/ARC/LP0776344 |
| Direitos |
Copyright 2009 Association for Computing Machinery "© ACM, 2009. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. |
| Fonte |
Faculty of Science and Technology; Information Security Institute |
| Palavras-Chave | #080303 Computer System Security #Information security #Computer program analysis #Embedded systems |
| Tipo |
Conference Paper |
