VST-Flow: Fine-grained low-level reasoning about real-world C code
Logic in Computer Science
2017-09-18 v1
Abstract
We show how support for information-flow security proofs could be added on top of the Verified Software Toolchain (VST). We discuss several attempts to define information flow security in a VST-compatible way, and present a statement of information flow security in "continuation-passing" style. Moreover, we present Hoare rules augmented with information flow control assertions, and sketch how these rules could be proven sound with respect to the definition given before. We also discuss how this can be implemented in the Coq proof assistant, and how VST's proof automation framework (VST-Floyd) can be adapted to support convenient information flow security proofs.
Keywords
Cite
@article{arxiv.1709.05243,
title = {VST-Flow: Fine-grained low-level reasoning about real-world C code},
author = {Samuel Gruetter and Toby Murray},
journal= {arXiv preprint arXiv:1709.05243},
year = {2017}
}