Skip to main content
SpringerLink
Log in

A translator with a security static analysis feature of an information flow for a simple programming language

  • Published:
Automatic Control and Computer Sciences Aims and scope Submit manuscript

Abstract

We consider while-language programs with variables of two security types: low and high. Security static analysis of information flows of such programs identifies insecure information flows which can cause leaks. Semantic rules of such an analysis which was proposed in [6] assign security types for expressions, statements and compositions of statements. We use these rules to propose an algorithm of security static analysis tries to discover a security type of the program under consideration. If such a type can be assigned, information flows of the program are secure; otherwise, it contains insecure information flows. We have used flex and bison [5] tools to implement a translator for a while-language into the MMIX computer [2] instruction sequence.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Similar content being viewed by others

References

  1. Devyanin, P.N., Modeli bezopasnosti kompjuternyh sistem: Uchebnoe posobie dlja studentov vysshih uchebnyh zavedenii (Models of Computer System Security. A Tutorial for Students of Higher Educational Institutes) Moscow: Akademija, 2005.

    Google Scholar 

  2. Knuth, D.E., The Art of Computer Programming. MMIX-A RISC Computer for the New Millenium, vol. 1, fasc. 1, Addison-Wesley Professional, 2005.

    Google Scholar 

  3. Grune, D. and Jacobs, C.J.H., Parsing Techniques. A Practical Guide, Springer-Verlag, 2008, 2nd ed.

    Google Scholar 

  4. Hoare, C.A.R., An axiomatic basis for computer programming, Commun. ACM, 1969, vol. 12, pp. 576–580.

    Article  MATH  Google Scholar 

  5. Levine, J., Flex and Bison. O’Reilly Media, 2009.

    Google Scholar 

  6. Sabelfeld, A. and Myers, A.C., Language-based information-flow security, IEEE J. Selected Areas in Commun., 2003, vol. 21, pp. 5–19.

    Article  Google Scholar 

  7. SWHILE-while-language translator with security types, www:https://bitbucket.org/kafti/swhile. since 22.04.2014

Download references

Author information

Authors and Affiliations

  1. Demidov Yaroslavl State University, Sovetskaya str. 14, Yaroslavl, 150000, Russia

    E. Ju. Antoshina, A. N. Barakova, E. S. Nikitin & D. Ju. Chalyy

Authors
  1. E. Ju. Antoshina
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. A. N. Barakova
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. E. S. Nikitin
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. D. Ju. Chalyy
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to E. Ju. Antoshina.

Additional information

The article is published in the original.

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Antoshina, E.J., Barakova, A.N., Nikitin, E.S. et al. A translator with a security static analysis feature of an information flow for a simple programming language. Aut. Control Comp. Sci. 48, 589–593 (2014). https://doi.org/10.3103/S0146411614070177

Download citation

  • Received:

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.3103/S0146411614070177

Keywords

Search

Navigation