Visible to the public Automatic Analysis of Critical Sections for Efficient Secure Multi-Execution

Submitted by grigby1 on Mon, 02/10/2020 - 11:35am
TitleAutomatic Analysis of Critical Sections for Efficient Secure Multi-Execution
Publication TypeConference Paper
Year of Publication2019
AuthorsPfeffer, Tobias, Göthel, Thomas, Glesner, Sabine
Conference Name2019 IEEE 19th International Conference on Software Quality, Reliability and Security (QRS)
ISBN Number978-1-7281-3927-2
KeywordsBinary Analysis, composability, DDSME, demand-driven secure multiexecution, fully automatic critical section analysis, Human Behavior, hypersafety security policies, Lattices, manual binary analysis, Monitoring, Multi Execution, Noninterference Enforcement, program testing, pubcrawl, reachability analysis, resilience, Resiliency, resource requirements, security, security of data, Security Policies Analysis, Semantics, static analysis, static code analysis, Switches
Abstract

Enforcement of hypersafety security policies such as noninterference can be achieved through Secure Multi-Execution (SME). While this is typically very resource-intensive, more efficient solutions such as Demand-Driven Secure Multi-Execution (DDSME) exist. Here, the resource requirements are reduced by restricting multi-execution enforcement to critical sections in the code. However, the current solution requires manual binary analysis. In this paper, we propose a fully automatic critical section analysis. Our analysis extracts a context-sensitive boundary of all nodes that handle information from the reachability relation implied by the control-flow graph. We also provide evaluation results, demonstrating the correctness and acceleration of DDSME with our analysis.
URLhttps://ieeexplore.ieee.org/document/8854712
DOI10.1109/QRS.2019.00048
Citation Keypfeffer_automatic_2019
Groups: