SHF: Small: Secure Compilation of Advanced Languages

SHF:小型:高级语言的安全编译

基本信息

  • 批准号:
    1422133
  • 负责人:
  • 金额:
    $ 49.98万
  • 依托单位:
  • 依托单位国家:
    美国
  • 项目类别:
    Standard Grant
  • 财政年份:
    2014
  • 资助国家:
    美国
  • 起止时间:
    2014-08-01 至 2017-07-31
  • 项目状态:
    已结题

项目摘要

Title: SHF: Small: Secure Compilation of Advanced LanguagesAdvanced programming languages, based on dependent types, enable program verification alongside program development, thus making them an ideal tool for building fully verified, high assurance software. Recent dependently typed languages that permit reasoning about state and effects---such as Hoare Type Theory (HTT) and Microsoft's F*---are particularly promising and have been used to verify a range of rich security policies, from state-dependent information flow and access control to conditional declassification and information erasure. But while these languages provide the means to verify security and correctness of high-level source programs, what is ultimately needed is a guarantee that the same properties hold of compiled low-level target code. Unfortunately, even when compilers for such advanced languages exist, they come with no formal guarantee of correct compilation, let alone any guarantee of secure compilation---i.e., that compiled components will remain as secure as their high-level counterparts when executed within arbitrary low-level contexts. This project seeks to demonstrate how to build realistic yet secure compilers. This is a notoriously difficult problem. On one hand, a secure compiler must ensure that low-level contexts cannot launch any "attacks" on the compiled component that would have been impossible to launch in the high-level language. On the other hand, a realistic compiler cannot simply limit the expressiveness of the low-level target language to achieve the security goal. The intellectual merit of this project is the development of a powerful new proof architecture for realistic yet secure compilation of dependently typed languages that relies on contracts to ensure that target-level contexts respect source-level security guarantees and leverages these contracts in a formal model of how source and target code may interoperate. The broader impact is that this research will make it possible to compose high-assurance software components into high-assurance software systems, regardless of whether the components are developed in a high-level programming language or directly in assembly. Compositionality has been a long-standing open problem for certifying systems for high-assurance. Hence, this research has potential for enormous impact on how high-assurance systems are built and certified. The specific goal of the project is to develop a verified multi-pass compiler from Hoare Type Theory to assembly that is type preserving, correct, and secure. The compiler will include passes that perform closure conversion, heap allocation, and code generation. To prove correct compilation of components, not just whole programs, this work will use an approach based on defining a formal semantics of interoperability between source components and target code. To guarantee secure compilation, the project will use (static) contract checking to ensure that compiled code is only run in target contexts that respect source-level security guarantees. To carry out proofs of compiler correctness, the project will develop a logical relations proof method for Hoare Type Theory.
标题:SHF:小:基于依赖类型的高级语言编程的安全汇编,启用程序验证以及程序开发,从而成为构建完全验证的高保证软件的理想工具。最近允许有关状态和效果推理的近期类型的语言 - 例如Hoare类型理论(HTT)和Microsoft的F*---尤其有希望,并且已用于验证一系列丰富的安全策略,从国家依赖性信息流和访问控制到有条件的解密和信息擦除。但是,尽管这些语言提供了验证高级源程序的安全性和正确性的手段,但最终需要的是保证相同的属性保留了编译的低级目标代码。不幸的是,即使存在此类高级语言的编译器,它们也无法正式保证正确的编译,更不用说任何保证安全编译的保证了,即,在任意低级上下文中执行时,编译的组件将保持与其高级对应物一样安全。该项目旨在演示如何建立现实但安全的编译器。这是一个众所周知的困难问题。一方面,安全的编译器必须确保低级上下文不能在编译的组件上启动任何“攻击”,这是无法以高级语言启动的。另一方面,现实的编译器不能简单地限制低级目标语言的表现力来实现安全目标。该项目的智力优点是开发有力的新证明体系结构,以实现依赖合同的相关语言的现实且安全的编译,以确保目标级别的环境尊重源级别的安全性保证,并以正式模型的方式来确保源和目标代码如何相互键入。更广泛的影响是,这项研究将使您可以将高保证软件组件构成高保证软件系统,而不管组件是用高级编程语言开发还是直接在组装中开发。对于认证系统的高保证系统,构图一直是一个长期的开放问题。因此,这项研究可能会对高保险系统的构建和认证产生巨大影响。该项目的具体目标是开发一个经过验证的多通编译器,从Hoare类型理论到保存,正确和安全的类型的组装。编译器将包括执行封闭转换,堆分配和代码生成的通行证。为了证明组件的正确汇编,不仅是整个程序,这项工作将使用一种方法来定义源组件和目标代码之间互操作性的正式语义。为了确保安全汇编,项目将使用(静态)合同检查,以确保仅在尊重源级安全保证的目标上下文中运行编译的代码。为了执行编译器正确性的证据,该项目将开发出Hoare类型理论的逻辑关系证明方法。

项目成果

期刊论文数量(1)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)
The next 700 compiler correctness theorems (functional pearl)
{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ monograph.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ sciAawards.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ conferencePapers.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ patent.updateTime }}

Amal Ahmed其他文献

Skin delivery of nisoldipine from niosome proconcentrate
尼索地平原浓缩物的皮肤递送
A Core Calculus for Provenance
起源的核心计算
  • DOI:
    10.3233/jcs-130487
  • 发表时间:
    2012
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Umut A. Acar;Amal Ahmed;J. Cheney;Roly Perera
  • 通讯作者:
    Roly Perera
Quadriceps Muscle Strength Exercises and Its Effect on Osteoarthritis Patients at Aswan University Hospital
阿斯旺大学医院股四头肌力量练习及其对骨关节炎患者的影响
  • DOI:
    10.21608/msnj.2021.190450
  • 发表时间:
    2021
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Leila Abdu;Amal Ahmed;M. Abd elbaky
  • 通讯作者:
    M. Abd elbaky
Correlation of CD74 expression with the Ki-67-labeling index and CD138 in multiple myeloma: a clinicopathological and immunohistochemical study
多发性骨髓瘤中 CD74 表达与 Ki-67 标记指数和 CD138 的相关性:临床病理学和免疫组织化学研究
  • DOI:
    10.1097/01.xej.0000421477.13089.d1
  • 发表时间:
    2012
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Zeinab H. El;Amal Ahmed;Medhat M. Ali;A. Khalifa
  • 通讯作者:
    A. Khalifa
Prevalence of Enterobacter aerogenes in row milk and some milk products.
产奶和一些奶制品中产气肠杆菌的流行。
  • DOI:
    10.21608/avmj.2023.226351.1173
  • 发表时间:
    2023
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Ismail Seddik Mohammed;Engy Kamil;Wegdan Abd;EL.HAMED Mohamed;Amal Ahmed;Mahmoud Elkhawaga;Engy Kamil Nassif
  • 通讯作者:
    Engy Kamil Nassif

Amal Ahmed的其他文献

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

{{ truncateString('Amal Ahmed', 18)}}的其他基金

SHF: Small: Collaborative Research: Foundations for Gradual Typing
SHF:小型:协作研究:渐进打字的基础
  • 批准号:
    1910522
  • 财政年份:
    2019
  • 资助金额:
    $ 49.98万
  • 项目类别:
    Standard Grant
SHF: Small: Principled Compiling and Linking for Multi-Language Software
SHF:小型:多语言软件的原则性编译和链接
  • 批准号:
    1816837
  • 财政年份:
    2018
  • 资助金额:
    $ 49.98万
  • 项目类别:
    Standard Grant
CAREER: Verified Compilers for a Multi-Language World
职业:多语言世界的经过验证的编译器
  • 批准号:
    1453796
  • 财政年份:
    2015
  • 资助金额:
    $ 49.98万
  • 项目类别:
    Continuing Grant
SHF: Small: Effectful Software Contracts
SHF:小型:有效的软件合同
  • 批准号:
    1203008
  • 财政年份:
    2011
  • 资助金额:
    $ 49.98万
  • 项目类别:
    Standard Grant
SHF: Small: Effectful Software Contracts
SHF:小型:有效的软件合同
  • 批准号:
    1117635
  • 财政年份:
    2011
  • 资助金额:
    $ 49.98万
  • 项目类别:
    Standard Grant

相似国自然基金

新型CAR-T小分子安全开关的设计、合成及其抗实体瘤肿瘤免疫机制研究
  • 批准号:
  • 批准年份:
    2022
  • 资助金额:
    52 万元
  • 项目类别:
    面上项目
新型CAR-T小分子安全开关的设计、合成及其抗实体瘤肿瘤免疫机制研究
  • 批准号:
    82273762
  • 批准年份:
    2022
  • 资助金额:
    52.00 万元
  • 项目类别:
    面上项目
高寒高海拔深切峡谷桥址局地风场小尺度热力驱动机制及其对桥上行车安全的影响
  • 批准号:
  • 批准年份:
    2020
  • 资助金额:
    58 万元
  • 项目类别:
    面上项目
基于定量分析的古村落建设安全智慧研究——以小江断裂带为例
  • 批准号:
    41867069
  • 批准年份:
    2018
  • 资助金额:
    40.0 万元
  • 项目类别:
    地区科学基金项目
基于并行计算的大规模电力系统小干扰稳定在线分析与安全预警研究
  • 批准号:
    51677164
  • 批准年份:
    2016
  • 资助金额:
    58.0 万元
  • 项目类别:
    面上项目

相似海外基金

SHF: Small: Secure Power Management and Delivery Exploiting Intelligent Power Networks On-Chip
SHF:小型:利用片上智能电源网络实现安全电源管理和传输
  • 批准号:
    1526466
  • 财政年份:
    2015
  • 资助金额:
    $ 49.98万
  • 项目类别:
    Standard Grant
SHF: Small:Enabling Practical, Secure, and Physically Unclonable Cryptographic Systems
SHF:小型:实现实用、安全且物理上不可克隆的加密系统
  • 批准号:
    1217866
  • 财政年份:
    2012
  • 资助金额:
    $ 49.98万
  • 项目类别:
    Continuing Grant
SHF: Small: Creating Efficient, Verifiably-Secure Computing Architectures Using Programming Language Techniques
SHF:小型:使用编程语言技术创建高效、可验证安全的计算架构
  • 批准号:
    1117165
  • 财政年份:
    2011
  • 资助金额:
    $ 49.98万
  • 项目类别:
    Standard Grant
SHF: Small: Collaborative Research: Beyond Secure Processors - Securing Systems Against Hardware
SHF:小型:协作研究:超越安全处理器 - 保护系统免受硬件攻击
  • 批准号:
    0915501
  • 财政年份:
    2009
  • 资助金额:
    $ 49.98万
  • 项目类别:
    Standard Grant
SHF: Small: Rethinking Computer Architecture for Secure and Resilient Systems
SHF:小型:重新思考安全和弹性系统的计算机架构
  • 批准号:
    0917134
  • 财政年份:
    2009
  • 资助金额:
    $ 49.98万
  • 项目类别:
    Standard Grant
{{ showInfoDetail.title }}

作者:{{ showInfoDetail.author }}

知道了