一种构造代码安全性证明的方法 - CiteSeerX.PDF

ISSN 1000-9825, CODEN RUXUEW E-mail: jos@ Journal of Software , Vol.19, No.10, October 2008, pp.2720−2727 DOI: 10.3724/SP.J.1001.2008.02720 Tel/Fax: +86-10 © 2008 by Journal of Software . All rights reserved. ∗ 一种构造代码安全性证明的方法 1,2+ 1,2 1,2 郭 宇 , 陈意云 , 林春晓 1( 中国科学技术大学 计算机科学技术系,安徽 合肥 230027) 2( 中国科学技术大学 苏州研究院 软件安全实验室,江苏 苏州 215123) A Method for Code Safety Proof Construction GUO Yu1,2+, CHEN Yi-Yun1,2, LIN Chun-Xiao1,2 1(Department of Computer Science and Technology, University of Science and Technology of China, Hefei 230027, China) 2(Software Security Laboratory, Suzhou Institute for Advanced Study, University of Science and Technology of China, Suzhou 215123, China) + Corresponding author: E-mail: guoyu@ Guo Y, Chen YY, Lin CX. A method for code safety proof construction. Journal of Software, 2008, 19(10):2720−2727. /1000-9825/19/2720.htm Abstract : This paper proposes a new method to achieve proof construction, the basic idea of which is to construct proof with auxiliary recursive functions in the foundational logic. In this way, the workload of proof construction and the size of constructed proof can be reduced while maintaining the same trusted computing base. This paper also illustrates how to adapt this method to a type-based FPCC system, where the safety proof can be constructed automatically. All this work is implemented in the proof assistant Coq. Key words: type theory, software security, proof-carrying code, program verification, typed assembly language 摘 要: 提出一种构造代码安全性证明的新方法.这种方法的基本思想是,在基础逻辑中定义辅助递归函数来帮 助构造证明.这种构造方法在不增加系统信任计算基础的情况下可以极大地减轻构造证明的工作量,并且减小安全 性证明的规模.同时介绍了该方法在一个FPCC