loading
Documents

Research.Publish.Connect.

Paper

Authors: Md. Imran Alam 1 ; Raju Halder 2 ; Harshita Goswami 1 and Jorge Sousa Pinto 3

Affiliations: 1 Indian Institute of Technology Patna, India ; 2 Indian Institute of Technology Patna and HASLab/INESC TEC & Universidade do Minho, India ; 3 HASLab/INESC TEC & Universidade do Minho, Portugal

ISBN: 978-989-758-300-1

Keyword(s): Taint Analysis, K Framework, Information Flow, Security.

Abstract: The K framework is a rewrite logic-based framework for defining programming language semantics suitable for formal reasoning about programs and programming languages. In this paper, we present K-Taint , a rewriting logic-based executable semantics in the K framework for taint analysis of an imperative programming language. Our K semantics can be seen as a sound approximation of programs semantics in the corresponding security type domain. More specifically, as a foundation to this objective, we extend to the case of taint analysis the semantically sound flow-sensitive security type system by Hunt and Sands, considering a support to the interprocedural analysis as well. With respect to the existing methods, K-Taint supports context- and flow-sensitive analysis, reduces false alarms, and provides a scalable solution. Experimental evaluation on several benchmark codes demonstrates encouraging results as an improvement in the precision of the analysis.

PDF ImageFull Text

Download
Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 54.80.102.170

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Alam M., Halder R., Goswami H. and Sousa Pinto J. (2018). K-Taint: An Executable Rewriting Logic Semantics for Taint Analysis in the K Framework.In Proceedings of the 13th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE, ISBN 978-989-758-300-1, pages 359-366. DOI: 10.5220/0006786603590366

@conference{enase18,
author={Md. Imran Alam and Raju Halder and Harshita Goswami and Jorge Sousa Pinto},
title={K-Taint: An Executable Rewriting Logic Semantics for Taint Analysis in the K Framework},
booktitle={Proceedings of the 13th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE,},
year={2018},
pages={359-366},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006786603590366},
isbn={978-989-758-300-1},
}

TY - CONF

JO - Proceedings of the 13th International Conference on Evaluation of Novel Approaches to Software Engineering - Volume 1: ENASE,
TI - K-Taint: An Executable Rewriting Logic Semantics for Taint Analysis in the K Framework
SN - 978-989-758-300-1
AU - Alam M.
AU - Halder R.
AU - Goswami H.
AU - Sousa Pinto J.
PY - 2018
SP - 359
EP - 366
DO - 10.5220/0006786603590366

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.