CIDRE - 2017 - Annual activity report

CIDRE

CIDRE - 2017

Project-Team Cidre

Personnel

Overall Objectives

CIDRE in Brief

Research Program

Application Domains

Security is Required Everywhere

Highlights of the Year

Highlights

New Software and Platforms

New Results

Bilateral Contracts and Grants with Industry

Partnerships and Cooperations

Dissemination

Bibliography

Previous |

Home | Next next

Section: Highlights of the Year

Highlights

This year, the CIDRE team would like to emphasize the following publications that appeared in major academic venues:

Formal verification of an information flow monitor, presented at SEFM'17 [11]. See below (5.1.1) for a more complete description of this work.
Automated quantitative information flow analysis for imperative deterministic programs, presented at POPL'17 [8].
Reconstruction of connectivity graph for cloud infrastructures, presented at NCA'2017 [17]
Co-processor-based Behavior Monitoring: Application to the Detection of Attacks Against the SMM, presented at ACSAC'17 [10]

Awards

Laurent Georget, Mathieu Jaume (LIP6), Guillaume Piolle, Frédéric Tronel and Valérie Viet Triem Tong received the best paper award at the SEFM'17 conference , which is a well established conference focused on the link between software development and formal methods. This publication is based on the work realized by Laurent Georget during his PhD. It focuses on the automated verification of the correctness of an information flow monitor that operates at the kernel level (Linux kernel). This information flow monitor relies on the Linux Security Module (LSM hereafter) framework. This framework has been designed for mandatory access control. This work tries to answer the question of its correctness when used for information flow monitoring. The verification is operated by a GCC plugin during the compilation phase of a full Linux kernel. Based on an ad-hoc static analysis, it can determine if the LSM hooks are correctly placed with respect to a property of complete mediation of systems calls. Each system call that is known to generate an information flow during its execution (34 system calls on a grand total of 340) is analyzed to determine if the LSM framework through the hooks it provides can intercept each execution that potentially generates an information flow. We have demonstrated that for 4 system calls, the hooks are not well placed, and discovered that 4 systems calls are simply lacking LSM hooks. A patch has been produced to improve this situation.

Best Paper Award:

[11]

L. Georget, M. Jaume, G. Piolle, F. Tronel, V. Viet Triem Tong.

Information Flow Tracking for Linux Handling Concurrent System Calls and Shared Memory, in: 15th International Conference on Software Engineering and Formal Methods (SEFM 2017), Trento, Italy, A. Cimatti, M. Sirjani (editors), LNCS, Springer International Publishing, September 2017, pp. 1-16. [ DOI : 10.1007/978-3-319-66197-1_1 ]

http://hal.upmc.fr/hal-01535949

Previous |

Home | Next next