loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Md. Imran Alam 1 ; Raju Halder 2 ; Harshita Goswami 1 and Jorge Sousa Pinto 3

Affiliations: 1 Indian Institute of Technology Patna, India ; 2 Indian Institute of Technology Patna and HASLab/INESC TEC & Universidade do Minho, India ; 3 HASLab/INESC TEC & Universidade do Minho, Portugal

Keyword(s): Taint Analysis, K Framework, Information Flow, Security.

Related Ontology Subjects/Areas/Topics: Formal Methods ; Simulation and Modeling ; Software Engineering ; Software Engineering Methods and Techniques

Abstract: The K framework is a rewrite logic-based framework for defining programming language semantics suitable for formal reasoning about programs and programming languages. In this paper, we present K-Taint , a rewriting logic-based executable semantics in the K framework for taint analysis of an imperative programming language. Our K semantics can be seen as a sound approximation of programs semantics in the corresponding security type domain. More specifically, as a foundation to this objective, we extend to the case of taint analysis the semantically sound flow-sensitive security type system by Hunt and Sands, considering a support to the interprocedural analysis as well. With respect to the existing methods, K-Taint supports context- and flow-sensitive analysis, reduces false alarms, and provides a scalable solution. Experimental evaluation on several benchmark codes demonstrates encouraging results as an improvement in the precision of the analysis.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 18.226.187.199

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Alam, M.; Halder, R.; Goswami, H. and Sousa Pinto, J. (2018). K-Taint: An Executable Rewriting Logic Semantics for Taint Analysis in the K Framework. In Proceedings of the 13th International Conference on Evaluation of Novel Approaches to Software Engineering - ENASE; ISBN 978-989-758-300-1; ISSN 2184-4895, SciTePress, pages 359-366. DOI: 10.5220/0006786603590366

@conference{enase18,
author={Md. Imran Alam. and Raju Halder. and Harshita Goswami. and Jorge {Sousa Pinto}.},
title={K-Taint: An Executable Rewriting Logic Semantics for Taint Analysis in the K Framework},
booktitle={Proceedings of the 13th International Conference on Evaluation of Novel Approaches to Software Engineering - ENASE},
year={2018},
pages={359-366},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006786603590366},
isbn={978-989-758-300-1},
issn={2184-4895},
}

TY - CONF

JO - Proceedings of the 13th International Conference on Evaluation of Novel Approaches to Software Engineering - ENASE
TI - K-Taint: An Executable Rewriting Logic Semantics for Taint Analysis in the K Framework
SN - 978-989-758-300-1
IS - 2184-4895
AU - Alam, M.
AU - Halder, R.
AU - Goswami, H.
AU - Sousa Pinto, J.
PY - 2018
SP - 359
EP - 366
DO - 10.5220/0006786603590366
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic