ActionScript bytecode verification with co-logic programming

DeVries, Brian W.; Gupta, Gopal; Hamlen, Kevin W.; Moore, Scott M.; Sridhar, Meera

doi:10.1145/1554339.1554342

Cited by 12 publications

(10 citation statements)

References 31 publications

(28 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For example, CodeSurfer/x86 and WPDS++ have been used to extract and check models for x86 binary programs [3]. In prior work [9], we have presented a general model-checking system for ActionScript bytecode implemented using co-logic programming [19]. This paper extends that work by introducing new formalisms specific to the verification of safety policies enforced by IRM's.…”

Section: Related Workmentioning

confidence: 99%

“…Once the raw bytecode is extracted, a Definite Clause Grammar (DCG) [18] parser converts it to an annotated abstract syntax tree (AST) for easy analysis and manipulation. We implemented this parser in Prolog so that the same code functions as a code generator due to the reversible nature of Prolog predicates [9]. Modified AST's produced by the rewriter are thereby transformed back into bytecode, and the ABC Injector reconstructs a modified SWF file by packaging the new code with the original data.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Aspect-oriented in-lined reference monitors

Hamlen

Jones

2008

Proceedings of the Third ACM SIGPLAN Workshop on Programming Languages and Analysis for Security

Self Cite

View full text Add to dashboard Cite

Abstract.A technique for elegantly expressing In-lined Reference Monitor (IRM) certification as model-checking is presented and implemented. In-lined Reference Monitors (IRM's) enforce software security policies by in-lining dynamic security guards into untrusted binary code. Certifying IRM systems provide strong formal guarantees for such systems by verifying that the instrumented code produced by the IRM system satisfies the original policy. Expressing this certification step as model-checking allows well-established model-checking technologies to be applied to this often difficult certification task. The technique is demonstrated through the enforcement and certification of a URL anti-redirection policy for ActionScript web applets.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Aspect-oriented in-lined reference monitors

Hamlen

Jones

2008

Proceedings of the Third ACM SIGPLAN Workshop on Programming Languages and Analysis for Security

Self Cite

View full text Add to dashboard Cite

show abstract

“…Though its bytecode language is type-safe, past malware has exploited VM buffer overflows [37], implemented cross-site-scripting attacks, and performed click-jacking [38,39] to damage browsers or disrupt victim host pages. The difficulty of enforcing rich AS security policies that prevent such attacks in web environments that are aggressively heterogeneous (e.g., composed of mash-ups that mix mobile code from many mutually distrusting sources) has led to application of IRM technologies to this challenging problem domain [9,[25][26][27][28]40].…”

Section: Background and Related Workmentioning

confidence: 99%

Hippocratic binary instrumentation: First do no harm

Sridhar

Wartell²,

Hamlen

2014

Science of Computer Programming

Self Cite

View full text Add to dashboard Cite

In-lined Reference Monitors (IRMs) cure binary software of security violations by instrumenting them with runtime security checks. Although over a decade of research has firmly established the power and versatility of the in-lining approach to security, its widespread adoption by industry remains impeded by concerns that in-lining may corrupt or otherwise harm intended, safe behaviors of the software it protects. Practitioners with such concerns are unwilling to adopt the technology despite its security benefits for fear that some software may break in ways that are hard to diagnose. This paper shows how recent approaches for machine-verifying the policy-compliance (soundness) of IRMs can be extended to also formally verify IRM preservation of policy-compliant behaviors (transparency). Feasibility of the approach is demonstrated through a transparency-checker implementation for Adobe ActionScript bytecode. The framework is applied to enforce security policies for Adobe Flash web advertisements and automatically verify that their policy-compliant behaviors are preserved.

show abstract

“…Our proposed binary-rewriter implementation will be based on SPoX (Security Policy XML) (Hamlen, 2008), which we developed to enforce declarative, XML-based, IRM policies for Java byte code programs. In order to provide strong security guarantees for our system, we will apply automated software verification technologies, including type and model-checking, which we have previously used to certify the output of binary-rewriters (Hamlen, 2006;DeVries, 2009). Such certification allows a small, trusted verifier to independently prove that rewritten binary code satisfies the original security policy, thereby shifting the comparatively larger binaryrewriter out of the trusted computing base of the system…”

Section: Integrate Sun Xacmi Implementation Into Hdfsmentioning

confidence: 99%

Third Party Data Protection Applied To Cloud and Xacml Implementation in the Hadoop Environment With Sparql

Reddy¹

2012

IOSRJCE

View full text Add to dashboard Cite

ActionScript bytecode verification with co-logic programming

Cited by 12 publications

References 31 publications

Aspect-oriented in-lined reference monitors

Aspect-oriented in-lined reference monitors

Hippocratic binary instrumentation: First do no harm

Third Party Data Protection Applied To Cloud and Xacml Implementation in the Hadoop Environment With Sparql

Contact Info

Product

Resources

About