research-article

Fully abstract trace semantics for low-level isolation mechanisms

Authors:

Marco Patrignani,

Dave ClarkeAuthors Info & Claims

SAC '14: Proceedings of the 29th Annual ACM Symposium on Applied Computing

Pages 1562 - 1569

https://doi.org/10.1145/2554850.2554865

Published: 24 March 2014 Publication History

Abstract

Many software systems adopt isolation mechanisms of modern processors as software security building blocks. Reasoning about these building blocks means reasoning about elaborate assembly code, which can be very complex due to the loose structure of the code. A way to overcome this complexity is giving the code a more structured semantics. This paper presents one such semantics, namely a fully abstract trace semantics, for an assembly language enhanced with protection mechanisms of modern processors. The trace semantics represents the behaviour of protected assembly code with simple abstractions, unburdened by low-level details, at the maximum degree of precision. Additionally, it captures the capabilities of attackers to protected software and simplifies providing a secure compiler targeting that language.

References

[1]

M. Abadi. Protection in programming-language translations. In Secure Internet programming, pages 19--34. Springer-Verlag, 1999.

Digital Library

[2]

P. Agten, R. Strackx, B. Jacobs, and F. Piessens. Secure compilation to modern processors. In CSF '12, pages 171--185. IEEE, 2012.

Digital Library

[3]

P.-L. Curien. Definability and full abstraction. Electr. Notes Theor. Comput. Sci., 172: 301--310, 2007.

Digital Library

[4]

K. Eldefrawy, A. Francillon, D. Perito, and G. Tsudik. SMART: Secure and Minimal Architecture for (Establishing a Dynamic) Root of Trust. In NDSS'12.

[5]

A. Jeffrey and J. Rathke. Full abstraction for polymorphic pi-calculus. In FOSSACS'05, pages 266--281. Springer-Verlag, 2005.

Digital Library

[6]

A. Jeffrey and J. Rathke. A fully abstract may testing semantics for concurrent objects. Theor. Comput. Sci., 338(1--3): 17--63, 2005.

Digital Library

[7]

J. B. Jensen, N. Benton, and A. Kennedy. High-level separation logic for low-level code. SIGPLAN Not., 48(1): 301--314, Jan. 2013.

Digital Library

[8]

J. M. McCune, B. J. Parno, A. Perrig, M. K. Reiter, and H. Isozaki. Flicker: an execution infrastructure for TCB minimization. SIGOPS Oper. Syst. Rev., 42(4): 315--328, 2008.

Digital Library

[9]

F. McKeen et al. Innovative instructions and software model for isolated execution. In HASP '13, pages 10:1--10:1, New York, NY, USA, 2013. ACM.

Digital Library

[10]

R. Milner. Fully abstract models of typed lambda-calculi. Theor. Comput. Sci., 4(1): 1--22, 1977.

[11]

G. Morrisett, D. Walker, K. Crary, and N. Glew. From system F to typed assembly language. ACM Trans. Program. Lang. Syst., 21(3): 527--568, May 1999.

Digital Library

[12]

J. Noorman et al. Sancus: Low-cost trustworthy extensible networked devices with a zero-software Trusted Computing Base. In Proceedings of the 22nd USENIX conference on Security symposium, 2013.

Digital Library

[13]

M. Patrignani and D. Clarke. Fully Abstract Trace Semantics of Low-level Protection Mechanisms -- Extended Version. CW Reports CW 651, Dept. of Computer Science, K. U. Leuven, November 2012.

[14]

M. Patrignani, D. Clarke, and F. Piessens. Secure Compilation of Object-Oriented Components to Protected Module Architectures. In (APLAS'13), volume 8301 of LNCS, pages 176--191, 2013.

[15]

G. Plotkin. LCF considered as a programming language. Theor. Comput. Science, 5: 223--255, 1977.

[16]

A. Saabas and T. Uustalu. A compositional natural semantics and Hoare logic for low-level languages. Electr. Notes Theor. Comput. Sci., 156: 151--168, 2006.

Digital Library

[17]

L. Singaravelu, C. Pu, H. Härtig, and C. Helmuth. Reducing TCB complexity for security-sensitive applications: three case studies. SIGOPS Oper. Syst. Rev., 40(4): 161--174, 2006.

Digital Library

[18]

R. Strackx and F. Piessens. Fides: Selectively hardening software application components against kernel-level or process-level malware. In CCS 2012, pages 2--13. ACM Press, October 2012.

Digital Library

[19]

R. Strackx, F. Piessens, and B. Preneel. Efficient isolation of trusted subsystems in embedded systems. In SecureComm, pages 344--361, 2010.

Cited By

Patrignani MGarg D(2019)Robustly Safe CompilationProgramming Languages and Systems10.1007/978-3-030-17184-1_17(469-498)Online publication date: 6-Apr-2019
https://doi.org/10.1007/978-3-030-17184-1_17
Subramanyan PSinha RLebedev IDevadas SSeshia SThuraisingham BEvans DMalkin TXu D(2017)A Formal Foundation for Secure Remote Execution of EnclavesProceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security10.1145/3133956.3134098(2435-2450)Online publication date: 30-Oct-2017
https://dl.acm.org/doi/10.1145/3133956.3134098
Jacomme CKremer SScerri G(2017)Symbolic Models for Isolated Execution Environments2017 IEEE European Symposium on Security and Privacy (EuroS&P)10.1109/EuroSP.2017.16(530-545)Online publication date: Apr-2017
https://doi.org/10.1109/EuroSP.2017.16
Show More Cited By

Index Terms

Fully abstract trace semantics for low-level isolation mechanisms

Recommendations

Trace-Based Abstract Interpretation of Operational Semantics

We present trace-based abstract interpretation, a unification of several lines of research on applying Cousot-Cousot-style abstract interpretation a.i. to operational semantics definitions (such as flowchart, big-step, and small-step semantics) that ...
A fully abstract semantics of classes for Object-Z
Abstract
This paper presents a fully abstract semantics of classes for the object oriented formal specification language Object-Z. Such a semantics includes no unnecessary syntactic details and, hence, describes a class in terms of the external behaviour ...
Fully abstract compositional semantics for logic programs
POPL '89: Proceedings of the 16th ACM SIGPLAN-SIGACT symposium on Principles of programming languages

We propose a framework for discussing fully abstract compositional semantics, which exposes the interrelations between the choices of observables, compositions, and meanings. Every choice of observables and compositions determines a unique fully ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

SAC '14: Proceedings of the 29th Annual ACM Symposium on Applied Computing

March 2014

1890 pages

ISBN:9781450324694

DOI:10.1145/2554850

Conference Chairs:
Yookun Cho
Seoul National University, Korea
,
Sung Y. Shin
South Dakota State University
,
Program Chairs:
Sangwook Kim
Kyungpook National University, Korea
,
Chih-Cheng Hung
Southern Polytechnic State University
,
Jiman Hong
Soongsil University, South Korea

Copyright © 2014 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGAPP: ACM Special Interest Group on Applied Computing

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 24 March 2014

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Qualifiers

Research-article

Conference

SAC 2014

Sponsor:

SIGAPP

SAC 2014: Symposium on Applied Computing

March 24 - 28, 2014

Gyeongju, Republic of Korea

Acceptance Rates

SAC '14 Paper Acceptance Rate 218 of 939 submissions, 23%;

Overall Acceptance Rate 1,650 of 6,669 submissions, 25%

Upcoming Conference

SAC '25

Sponsor:
sigapp

The 40th ACM/SIGAPP Symposium on Applied Computing

March 31 - April 4, 2025

Catania , Italy

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

9
Total Citations
View Citations
70
Total Downloads

Downloads (Last 12 months)1
Downloads (Last 6 weeks)0

Reflects downloads up to 07 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

Patrignani MGarg D(2019)Robustly Safe CompilationProgramming Languages and Systems10.1007/978-3-030-17184-1_17(469-498)Online publication date: 6-Apr-2019
https://doi.org/10.1007/978-3-030-17184-1_17
Subramanyan PSinha RLebedev IDevadas SSeshia SThuraisingham BEvans DMalkin TXu D(2017)A Formal Foundation for Secure Remote Execution of EnclavesProceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security10.1145/3133956.3134098(2435-2450)Online publication date: 30-Oct-2017
https://dl.acm.org/doi/10.1145/3133956.3134098
Jacomme CKremer SScerri G(2017)Symbolic Models for Isolated Execution Environments2017 IEEE European Symposium on Security and Privacy (EuroS&P)10.1109/EuroSP.2017.16(530-545)Online publication date: Apr-2017
https://doi.org/10.1109/EuroSP.2017.16
Larmuseau APatrignani MClarke DOssowski S(2016)Implementing a secure abstract machineProceedings of the 31st Annual ACM Symposium on Applied Computing10.1145/2851613.2851796(2041-2048)Online publication date: 4-Apr-2016
https://dl.acm.org/doi/10.1145/2851613.2851796
Patrignani MAgten PStrackx RJacobs BClarke DPiessens F(2015)Secure Compilation to Protected Module ArchitecturesACM Transactions on Programming Languages and Systems10.1145/269950337:2(1-50)Online publication date: 16-Apr-2015
https://dl.acm.org/doi/10.1145/2699503
(2015)Fully abstract trace semantics for protected module architecturesComputer Languages, Systems and Structures10.1016/j.cl.2015.03.00242:C(22-45)Online publication date: 1-Jul-2015
https://dl.acm.org/doi/10.1016/j.cl.2015.03.002
Larmuseau APatrignani MClarke D(2015)A Secure Compiler for ML ModulesProgramming Languages and Systems10.1007/978-3-319-26529-2_3(29-48)Online publication date: 9-Dec-2015
https://doi.org/10.1007/978-3-319-26529-2_3
Larmuseau APatrignani MClarke D(2015)A High-Level Model for an Assembly Language Attacker by Means of ReflectionProceedings of the First International Symposium on Dependable Software Engineering: Theories, Tools, and Applications - Volume 940910.1007/978-3-319-25942-0_11(168-182)Online publication date: 4-Nov-2015
https://dl.acm.org/doi/10.1007/978-3-319-25942-0_11
Patrignani MClarke DPiessens F(2013)Secure Compilation of Object-Oriented Components to Protected Module ArchitecturesProceedings of the 11th Asian Symposium on Programming Languages and Systems - Volume 830110.1007/978-3-319-03542-0_13(176-191)Online publication date: 9-Dec-2013
https://dl.acm.org/doi/10.1007/978-3-319-03542-0_13

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten