TY - GEN
T1 - A certificate infrastructure for machine-checked proofs of conditional information flow
AU - Amtoft, Torben
AU - Dodds, Josiah
AU - Zhang, Zhi
AU - Appel, Andrew
AU - Beringer, Lennart
AU - Hatcliff, John
AU - Ou, Xinming
AU - Cousino, Andrew
PY - 2012
Y1 - 2012
N2 - In previous work, we have proposed a compositional framework for stating and automatically verifying complex conditional information flow policies using a relational Hoare logic. The framework allows developers and verifiers to work directly with the source code using source-level code contracts. In this work, we extend that approach so that the algorithm for verifying code compliance to an information flow contract emits formal certificates of correctness that are checked in the Coq proof assistant. This framework is implemented in the context of SPARK - a subset of Ada that has been used in a number of industrial contexts for implementing certified safety and security critical systems.
AB - In previous work, we have proposed a compositional framework for stating and automatically verifying complex conditional information flow policies using a relational Hoare logic. The framework allows developers and verifiers to work directly with the source code using source-level code contracts. In this work, we extend that approach so that the algorithm for verifying code compliance to an information flow contract emits formal certificates of correctness that are checked in the Coq proof assistant. This framework is implemented in the context of SPARK - a subset of Ada that has been used in a number of industrial contexts for implementing certified safety and security critical systems.
UR - http://www.scopus.com/inward/record.url?scp=84859309070&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84859309070&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-28641-4_20
DO - 10.1007/978-3-642-28641-4_20
M3 - Conference contribution
AN - SCOPUS:84859309070
SN - 9783642286407
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 369
EP - 389
BT - Principles of Security and Trust - First International Conference, POST 2012, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2012, Proceedings
T2 - 1st International Conference on Principles of Security and Trust, POST 2012, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2012
Y2 - 24 March 2012 through 1 April 2012
ER -