Skip to main content

Modular Verification for Computer Security

Author(s): Appel, Andrew W

Download
To refer to this page use: http://arks.princeton.edu/ark:/88435/pr11z4b
Abstract: For many software components, it is useful and important to verify their security. This can be done by an analysis of the software itself, or by isolating the software behind a protection mechanism such as an operating system kernel (virtual-memory protection) or cryptographic authentication (don't accepted untrusted inputs). But the protection mechanisms themselves must then be verified not just for safety but for functional correctness. Several recent projects have demonstrated that formal, deductive functional-correctness verification is now possible for kernels, crypto, and compilers. Here I explain some of the modularity principles that make these verifications possible.
Publication Date: 2016
Citation: Appel, Andrew W. "Modular Verification for Computer Security." In 2016 IEEE 29th Computer Security Foundations Symposium (CSF), (2018): pp. 1-8. doi: 10.1109/CSF.2016.8
DOI: doi:10.1109/CSF.2016.8
EISSN: 2374-8303
Pages: 1 - 8
Type of Material: Conference Article
Journal/Proceeding Title: 2016 IEEE 29th Computer Security Foundations Symposium (CSF)
Version: Author's manuscript



Items in OAR@Princeton are protected by copyright, with all rights reserved, unless otherwise indicated.