Collaborative Research: SaTC: CORE: Small: Hyperproperty-based Enforcement of Information-flow Security

协作研究:SaTC:核心:小型:基于超产权的信息流安全执行

基本信息

  • 批准号:
    2245114
  • 负责人:
  • 金额:
    $ 30万
  • 依托单位:
  • 依托单位国家:
    美国
  • 项目类别:
    Standard Grant
  • 财政年份:
    2023
  • 资助国家:
    美国
  • 起止时间:
    2023-07-01 至 2026-06-30
  • 项目状态:
    未结题

项目摘要

Enforcing security policies such as secrecy or integrity is crucial for software systems that handle large volumes of users’ sensitive information, where even a short transient violation of these policies may result in leaking or damaging highly sensitive information, compromising safety, or interruption of vital public or social services. Runtime monitoring and enforcement of security policies remains one of the foundational techniques for securing software systems. Many important security policies such as information-flow policies cannot be expressed as properties of individual executions, but can be expressed as properties on multiple execution traces, which are called hyperproperties. Motivated by a rich set of real-world applications, the overarching objective of this project is to develop effective runtime enforcement techniques for hyperproperties that enable strong protection of systems against various types of cyberattacks and information leaks. This project will bring about a paradigm shift in systematic runtime enforcement of information-flow properties, organized within three research thrusts that will develop novel monitor designs, open-source tools, and perform rigorous evaluation. The first thrust will develop black-box and grey-box predictive monitors for enforcing hyperproperties. This thrust will also investigate different input models, in particular, closed systems where the monitor can manipulate the input to the system to enforce a hyperproperty and reactive systems where the monitor cannot interfere with the input, as it is generated by an uncontrollable environment. The second thrust will focus on developing runtime monitors that are compositional. The project will design a composed monitor infrastructure where parts of the system are guarded by different monitors, as modern systems are composed of heterogeneous components from mutually distrusting sources. The third research thrust is dedicated to rigorous evaluation by delving into applications of the researchers' theoretical findings. This effort will apply results from the first two thrusts to implement monitors to enforce information flow properties and nonmalleable information flow on real world applications. The results of this project are expected to have several advantages as compared to the existing methods: they will be more general, as they can deal with a rich fragment of the temporal logic HyperLTL and will be transferable, compositional, and low-overhead.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.
执行保密或完整性等安全策略对于处理大量用户敏感信息的软件系统至关重要,即使是短暂的短暂违反这些策略也可能导致高度敏感信息泄露或损坏、危及安全或重要公共或社会服务中断。运行时监控和安全策略的实施仍然是保护软件系统的基本技术之一。许多重要的安全策略(例如信息流策略)不能表示为单个执行的属性,但可以表示为多个执行跟踪上的属性,称为超属性。在丰富的现实世界应用程序的推动下,该项目的总体目标是为超属性开发有效的运行时执行技术,从而为系统提供强有力的保护,防止各种类型的网络攻击和信息泄漏。该项目将在信息流属性的系统运行时执行方面带来范式转变,该项目分为三个研究重点,将开发新颖的监视器设计、开源工具并执行严格的评估。第一个推动力将开发黑盒和灰盒预测监视器来执行超级属性。这一推力还将研究不同的输入模型,特别是封闭系统,其中监视器可以操纵系统的输入以强制执行超属性和反应系统,其中监视器无法干扰输入,因为它是由不可控的环境生成的。第二个重点将集中于开发组合的运行时监视器。该项目将设计一个组合的监控基础设施,其中系统的各个部分由不同的监控器保护,因为现代系统是由来自相互不信任来源的异构组件组成的。第三个研究重点致力于通过深入研究研究人员的理论发现的应用来进行严格的评估。这项工作将应用前两个重点的结果来实施监视器,以在现实世界的应用程序中强制执行信息流属性和不可延展的信息流。与现有方法相比,该项目的结果预计将具有多个优势:它们将更加通用,因为它们可以处理时间逻辑 HyperLTL 的丰富片段,并且可转移、可组合且开销低。该奖项反映了 NSF 的法定使命,并通过使用基金会的智力价值和更广泛的影响审查标准进行评估,被认为值得支持。

项目成果

期刊论文数量(0)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ monograph.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ sciAawards.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ conferencePapers.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ patent.updateTime }}

Borzoo Bonakdarpour其他文献

First International Competition on Software for Runtime Verification
第一届运行时验证软件国际竞赛
  • DOI:
  • 发表时间:
    2014
  • 期刊:
  • 影响因子:
    0
  • 作者:
    E. Bartocci;Borzoo Bonakdarpour;Yliès Falcone
  • 通讯作者:
    Yliès Falcone
Parallelizing Deadlock Resolution in Symbolic Synthesis of Distributed Programs
分布式程序符号综合中的并行化死锁解决
Probabilistic Hyperproperties with Nondeterminism
具有非确定性的概率超性质
Distributed runtime verification of metric temporal properties
  • DOI:
    10.1016/j.jpdc.2023.104801
  • 发表时间:
    2024-03-01
  • 期刊:
  • 影响因子:
  • 作者:
    Ritam Ganguly;Yingjie Xue;Aaron Jonckheere;Parker Ljung;Benjamin Schornstein;Borzoo Bonakdarpour;Maurice Herlihy
  • 通讯作者:
    Maurice Herlihy
Stream-based Decentralized Runtime Verification
基于流的去中心化运行时验证
  • DOI:
    10.48550/arxiv.2301.13266
  • 发表时间:
    2023
  • 期刊:
  • 影响因子:
    0
  • 作者:
    R. Ganguly;Borzoo Bonakdarpour
  • 通讯作者:
    Borzoo Bonakdarpour

Borzoo Bonakdarpour的其他文献

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

{{ truncateString('Borzoo Bonakdarpour', 18)}}的其他基金

EAGER: Causal Analysis through Formal Reasoning and AI for Cancer Diagnostics
EAGER:通过形式推理和人工智能进行癌症诊断的因果分析
  • 批准号:
    2320050
  • 财政年份:
    2023
  • 资助金额:
    $ 30万
  • 项目类别:
    Standard Grant
Collaborative Research: SHF: Small: Runtime Verification at the Edge
合作研究:SHF:小型:边缘运行时验证
  • 批准号:
    2118356
  • 财政年份:
    2021
  • 资助金额:
    $ 30万
  • 项目类别:
    Standard Grant
SaTC: CORE: Small: Techniques for Software Model Checking of Hyperproperties
SaTC:核心:小型:超属性软件模型检查技术
  • 批准号:
    2100989
  • 财政年份:
    2020
  • 资助金额:
    $ 30万
  • 项目类别:
    Standard Grant
FMitF:Collaborative Research:Track I:Formal Techniques for Monitoring Low-level Cross-chain Functions
FMITF:合作研究:第一轨:监控低级跨链功能的形式化技术
  • 批准号:
    2102106
  • 财政年份:
    2020
  • 资助金额:
    $ 30万
  • 项目类别:
    Standard Grant
FMitF:Collaborative Research:Track I:Formal Techniques for Monitoring Low-level Cross-chain Functions
FMITF:合作研究:第一轨:监控低级跨链功能的形式化技术
  • 批准号:
    1917979
  • 财政年份:
    2019
  • 资助金额:
    $ 30万
  • 项目类别:
    Standard Grant
SaTC: CORE: Small: Techniques for Software Model Checking of Hyperproperties
SaTC:核心:小型:超属性软件模型检查技术
  • 批准号:
    1813388
  • 财政年份:
    2018
  • 资助金额:
    $ 30万
  • 项目类别:
    Standard Grant

相似国自然基金

Research on Quantum Field Theory without a Lagrangian Description
  • 批准号:
    24ZR1403900
  • 批准年份:
    2024
  • 资助金额:
    0.0 万元
  • 项目类别:
    省市级项目
Cell Research
  • 批准号:
    31224802
  • 批准年份:
    2012
  • 资助金额:
    24.0 万元
  • 项目类别:
    专项基金项目
Cell Research
  • 批准号:
    31024804
  • 批准年份:
    2010
  • 资助金额:
    24.0 万元
  • 项目类别:
    专项基金项目
Cell Research (细胞研究)
  • 批准号:
    30824808
  • 批准年份:
    2008
  • 资助金额:
    24.0 万元
  • 项目类别:
    专项基金项目
Research on the Rapid Growth Mechanism of KDP Crystal
  • 批准号:
    10774081
  • 批准年份:
    2007
  • 资助金额:
    45.0 万元
  • 项目类别:
    面上项目

相似海外基金

Collaborative Research: SaTC: CORE: Medium: Using Intelligent Conversational Agents to Empower Adolescents to be Resilient Against Cybergrooming
合作研究:SaTC:核心:中:使用智能会话代理使青少年能够抵御网络诱骗
  • 批准号:
    2330940
  • 财政年份:
    2024
  • 资助金额:
    $ 30万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Medium: Differentially Private SQL with flexible privacy modeling, machine-checked system design, and accuracy optimization
协作研究:SaTC:核心:中:具有灵活隐私建模、机器检查系统设计和准确性优化的差异化私有 SQL
  • 批准号:
    2317232
  • 财政年份:
    2024
  • 资助金额:
    $ 30万
  • 项目类别:
    Continuing Grant
Collaborative Research: NSF-BSF: SaTC: CORE: Small: Detecting malware with machine learning models efficiently and reliably
协作研究:NSF-BSF:SaTC:核心:小型:利用机器学习模型高效可靠地检测恶意软件
  • 批准号:
    2338301
  • 财政年份:
    2024
  • 资助金额:
    $ 30万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Medium: Differentially Private SQL with flexible privacy modeling, machine-checked system design, and accuracy optimization
协作研究:SaTC:核心:中:具有灵活隐私建模、机器检查系统设计和准确性优化的差异化私有 SQL
  • 批准号:
    2317233
  • 财政年份:
    2024
  • 资助金额:
    $ 30万
  • 项目类别:
    Continuing Grant
Collaborative Research: NSF-BSF: SaTC: CORE: Small: Detecting malware with machine learning models efficiently and reliably
协作研究:NSF-BSF:SaTC:核心:小型:利用机器学习模型高效可靠地检测恶意软件
  • 批准号:
    2338302
  • 财政年份:
    2024
  • 资助金额:
    $ 30万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Medium: Using Intelligent Conversational Agents to Empower Adolescents to be Resilient Against Cybergrooming
合作研究:SaTC:核心:中:使用智能会话代理使青少年能够抵御网络诱骗
  • 批准号:
    2330941
  • 财政年份:
    2024
  • 资助金额:
    $ 30万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Small: Towards Secure and Trustworthy Tree Models
协作研究:SaTC:核心:小型:迈向安全可信的树模型
  • 批准号:
    2413046
  • 财政年份:
    2024
  • 资助金额:
    $ 30万
  • 项目类别:
    Standard Grant
Collaborative Research: SaTC: EDU: RoCCeM: Bringing Robotics, Cybersecurity and Computer Science to the Middled School Classroom
合作研究:SaTC:EDU:RoCCeM:将机器人、网络安全和计算机科学带入中学课堂
  • 批准号:
    2312057
  • 财政年份:
    2023
  • 资助金额:
    $ 30万
  • 项目类别:
    Standard Grant
Collaborative Research: SaTC: CORE: Small: Investigation of Naming Space Hijacking Threat and Its Defense
协作研究:SaTC:核心:小型:命名空间劫持威胁及其防御的调查
  • 批准号:
    2317830
  • 财政年份:
    2023
  • 资助金额:
    $ 30万
  • 项目类别:
    Continuing Grant
Collaborative Research: SaTC: CORE: Small: Towards a Privacy-Preserving Framework for Research on Private, Encrypted Social Networks
协作研究:SaTC:核心:小型:针对私有加密社交网络研究的隐私保护框架
  • 批准号:
    2318843
  • 财政年份:
    2023
  • 资助金额:
    $ 30万
  • 项目类别:
    Continuing Grant
{{ showInfoDetail.title }}

作者:{{ showInfoDetail.author }}

知道了