Collaborative Research: Integrating Pointer Confinement and Access Control for Encapsulation

协作研究：集成指针限制和访问控制进行封装

• 批准号: 0208984
• 负责人: David Naumann
• 金额: $ 16万
• 依托单位: Stevens Institute of Technology
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2002
• 资助国家: 美国
• 起止时间: 2002-09-01 至 2006-08-31
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=0208984&HistoricalAwards=false
• 关键词: Collaborative; Research; Integrating; Pointer; Confinement

In modern computer systems, computation is distributed over many host machines. Mutually untrusted machines and users coexist, and software is built using plug-and-play components downloaded from remote hosts. Multiple users share resources so it is critical to ensure, e.g., that private information is not compromised. Languages like Java and C# are designed to provide such security by enforcing encapsulation boundaries that restrict interdependencies and information flows between program components. Such boundaries are undercut, however, by ubiquitous pointer aliasing which can be maliciously exploited to leak sensitive information.This project studies ways to confine pointers to their intended scopes. The focus is on the interplay between static analysis and dynamic access control to achieve confinement. The technical goal is to find confinement regimes that can be used to assure secure information flow in systems implemented using dynamic binding, multithreading, inheritance, class-based encapsulation, and access control. Analyses and transformations to minimize run-time performance costs for confinement and access control are also investigated. This work will lead to better programming methods and tools for development of web-based services and other distributed applications that require a high level of assurance. The work will contribute to technology for implementing programming languages and for checking for security flaws in application programs.

在现代计算机系统中，计算分布在许多主机上。相互不信任的机器和用户共存，软件是使用从远程主机下载的即插即用组件构建的。多个用户共享资源，因此必须确保，例如，私人信息不会被泄露 像Java和C#这样的语言旨在通过强制封装边界来提供这种安全性，这些边界限制程序组件之间的相互依赖性和信息流。 然而，这种边界被无处不在的指针别名所削弱，指针别名可以被恶意利用来泄漏敏感信息。本项目研究将指针限制在其预期范围内的方法。 重点是静态分析和动态访问控制之间的相互作用，以实现限制。 技术目标是找到可用于确保使用动态绑定、多线程、继承、基于类的封装和访问控制实现的系统中的安全信息流的限制机制。 分析和转换，以尽量减少运行时的性能成本限制和访问控制也进行了研究。 这项工作将导致更好的编程方法和工具，用于开发基于网络的服务和其他需要高水平保证的分布式应用程序。 这项工作将有助于实现编程语言和检查应用程序中的安全缺陷的技术。