A Translator with a Security Static Analysis Feature of an Information Flow for a Simple Programming Language

A Translator with a Security Static Analysis Feature of an Information Flow for a Simple Programming Language

We consider while-language programs with variables of two security types: low and high. Security static analysis of information flows of such programs identifies insecure information flows which can cause leaks. Semantic rules of such an analysis which was proposed in [6] assign security types for e...

Full description

Bibliographic Details
Main Authors: E. Ju. Antoshina, A. N. Barakova, E. S. Nikitin, D. Ju. Chalyy
Format: Article
Language:English
Published: Yaroslavl State University 2014-08-01
Series:Modelirovanie i Analiz Informacionnyh Sistem
Subjects:
language security
static analysis
information flow
Online Access:https://www.mais-journal.ru/jour/article/view/93
id doaj-523e0bebc66746d3ad2eca012380d33e
record_format Article
spelling doaj-523e0bebc66746d3ad2eca012380d33e2021-07-29T08:15:19ZengYaroslavl State UniversityModelirovanie i Analiz Informacionnyh Sistem1818-10152313-54172014-08-0121451210.18255/1818-1015-2014-4-5-1287A Translator with a Security Static Analysis Feature of an Information Flow for a Simple Programming LanguageE. Ju. Antoshina0A. N. Barakova1E. S. Nikitin2D. Ju. Chalyy3P.G. Demidov Yaroslavl State UniversityP.G. Demidov Yaroslavl State UniversityP.G. Demidov Yaroslavl State UniversityP.G. Demidov Yaroslavl State UniversityWe consider while-language programs with variables of two security types: low and high. Security static analysis of information flows of such programs identifies insecure information flows which can cause leaks. Semantic rules of such an analysis which was proposed in [6] assign security types for expressions, operators and compositions of operators. We use these rules to propose an algorithm of security static analysis to discover a security type of the program under consideration. If such a type can be assigned, information flows of the program are secure; otherwise, it contains insecure information flows. We have used flex and bison [5] tools to implement a translator for a while-language into the MMIX computer [2] instruction sequence.https://www.mais-journal.ru/jour/article/view/93language securitystatic analysisinformation flow
collection DOAJ
language English
format Article
sources DOAJ
author E. Ju. Antoshina
A. N. Barakova
E. S. Nikitin
D. Ju. Chalyy
spellingShingle E. Ju. Antoshina
A. N. Barakova
E. S. Nikitin
D. Ju. Chalyy
A Translator with a Security Static Analysis Feature of an Information Flow for a Simple Programming Language
Modelirovanie i Analiz Informacionnyh Sistem
language security
static analysis
information flow
author_facet E. Ju. Antoshina
A. N. Barakova
E. S. Nikitin
D. Ju. Chalyy
author_sort E. Ju. Antoshina
title A Translator with a Security Static Analysis Feature of an Information Flow for a Simple Programming Language
title_short A Translator with a Security Static Analysis Feature of an Information Flow for a Simple Programming Language
title_full A Translator with a Security Static Analysis Feature of an Information Flow for a Simple Programming Language
title_fullStr A Translator with a Security Static Analysis Feature of an Information Flow for a Simple Programming Language
title_full_unstemmed A Translator with a Security Static Analysis Feature of an Information Flow for a Simple Programming Language
title_sort translator with a security static analysis feature of an information flow for a simple programming language
publisher Yaroslavl State University
series Modelirovanie i Analiz Informacionnyh Sistem
issn 1818-1015
2313-5417
publishDate 2014-08-01
description We consider while-language programs with variables of two security types: low and high. Security static analysis of information flows of such programs identifies insecure information flows which can cause leaks. Semantic rules of such an analysis which was proposed in [6] assign security types for expressions, operators and compositions of operators. We use these rules to propose an algorithm of security static analysis to discover a security type of the program under consideration. If such a type can be assigned, information flows of the program are secure; otherwise, it contains insecure information flows. We have used flex and bison [5] tools to implement a translator for a while-language into the MMIX computer [2] instruction sequence.
topic language security
static analysis
information flow
url https://www.mais-journal.ru/jour/article/view/93
work_keys_str_mv AT ejuantoshina atranslatorwithasecuritystaticanalysisfeatureofaninformationflowforasimpleprogramminglanguage
AT anbarakova atranslatorwithasecuritystaticanalysisfeatureofaninformationflowforasimpleprogramminglanguage
AT esnikitin atranslatorwithasecuritystaticanalysisfeatureofaninformationflowforasimpleprogramminglanguage
AT djuchalyy atranslatorwithasecuritystaticanalysisfeatureofaninformationflowforasimpleprogramminglanguage
AT ejuantoshina translatorwithasecuritystaticanalysisfeatureofaninformationflowforasimpleprogramminglanguage
AT anbarakova translatorwithasecuritystaticanalysisfeatureofaninformationflowforasimpleprogramminglanguage
AT esnikitin translatorwithasecuritystaticanalysisfeatureofaninformationflowforasimpleprogramminglanguage
AT djuchalyy translatorwithasecuritystaticanalysisfeatureofaninformationflowforasimpleprogramminglanguage
_version_ 1721256563914571776

Similar Items