Can you trust your data?

被引：0

作者：

Orbaek, P

机构：

来源：

TAPSOFT '95: THEORY AND PRACTICE OF SOFTWARE DEVELOPMENT | 1995年 / 915卷

关键词：

D O I：

暂无

中图分类号：

TP31 [计算机软件];

学科分类号：

081202 ; 0835 ;

摘要：

A new program analysis is presented, and two compile time methods for this analysis are given. The analysis attempts to answer the question: ''Given some trustworthy and some untrustworthy input, can we trust the value of a given variable after execution of some code''. The analyses are based on an abstract interpretation framework and a constraint generation framework respectively. The analyses are proved safe with respect to an instrumented semantics. We explicitly deal with a language with pointers and possible aliasing problems. The constraint based analysis is related directly to the abstract interpretation and therefore indirectly to the instrumented semantics.

引用

页码：575 / 589

页数：15

共 7 条

[1] Cousot P., 1977, POPL, P238, DOI [DOI 10.1145/512950.512973, 10.1145/512950.512973]
[2] LATTICE MODEL OF SECURE INFORMATION-FLOW
DENNING, DE
[J]. COMMUNICATIONS OF THE ACM, 1976, 19 (05) : 236 - 243
[3] CERTIFICATION OF PROGRAMS FOR SECURE INFORMATION-FLOW
DENNING, DE
DENNING, PJ
[J]. COMMUNICATIONS OF THE ACM, 1977, 20 (07) : 504 - 513
[4] HEINTZE N, 1993, E COMMUNICATION
[5] HENGLEIN F, 1994, LECT NOTES COMPUTER, V788, P287
[6] KNUDSEN JL, 1993, OBJECT ORIENTED ENV
[7] Wall L, 1991, PROGRAMMING PERL

← 1 →