A Sound Framework for Untrusted Verification-Condition Generators

Ottawa, Canada June 22-June 25

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/LICS.2003.1210065

18th Annual IEEE Symposium on Logic i ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by George C. Necula Articles by Robert R. Schneck

	ASCII Text	x
	George C. Necula, Robert R. Schneck, "A Sound Framework for Untrusted Verification-Condition Generators," Logic in Computer Science, Symposium on, pp. 248, 18th Annual IEEE Symposium on Logic in Computer Science (LICS'03), 2003.

	BibTex	x
	@article{ 10.1109/LICS.2003.1210065, author = {George C. Necula and Robert R. Schneck}, title = {A Sound Framework for Untrusted Verification-Condition Generators}, journal ={Logic in Computer Science, Symposium on}, volume = {0}, year = {2003}, issn = {1043-6871}, pages = {248}, doi = {http://doi.ieeecomputersociety.org/10.1109/LICS.2003.1210065}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Logic in Computer Science, Symposium on TI - A Sound Framework for Untrusted Verification-Condition Generators SN - 1043-6871 SP EP A1 - George C. Necula, A1 - Robert R. Schneck, PY - 2003 KW - null VL - 0 JA - Logic in Computer Science, Symposium on ER -

George C. Necula, University of California, Berkeley

Robert R. Schneck, University of California, Berkeley

We propose a framework called configurable proof-carrying code, which allows the untrusted producer of mobile code to provide the bulk of the code verifier used by a code receiver to check the safety of the received code. The resulting system is both more flexible and also more trustworthy than a standard proof-carrying code system, because only a small part of the verifier needs to be trusted, while the remaining part can be configured freely to suit the safety policy on one hand, and the structure of the mobile code on the other hand.

In this paper we describe formally the protocol that the untrusted verifier must follow in the interaction with the trusted infrastructure. We present a proof of the soundness of the system, and we give preliminary evidence that the architecture is expressive enough to delegate to the untrusted verifier even the handling of loop invariants, indirect jumps and calling conventions.

Citation:

George C. Necula, Robert R. Schneck, "A Sound Framework for Untrusted Verification-Condition Generators," lics, pp.248, 18th Annual IEEE Symposium on Logic in Computer Science (LICS'03), 2003

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.