ZHU Jing-jing,YANG Xiao-hu

2011-01-01

Abstract:Verifying and repairing website content for its correctness and completeness is a challenging research issue.In order to provide web administrators with an effective and semi-automatic mechanism to assist them in fixing every possible expected problem,an approach for semi-automatically is proposed to verify website information based on the logic programming,and is realized by logic programming language prolog.This approach based on the rules given by users at first,and will semi-automatically repair and audit website when any problem is captured and is dealt with.The result shows it give support to automated website verification and repair.

Long Qin,Si Duanfeng,Han Xinhui,Zou Wei

DOI: https://doi.org/10.1109/cmpsac.2004.1342868

2004-01-01

Abstract:Mobile code can potentially be malicious. To protect the local system against malicious mobile code, a hybrid security framework of mobile code is proposed, which combines different static and dynamic techniques to provide a general solution to mobile code security. For a given mobile code and a set of security policies that the code needs to enforce, a static analysis tool is used to verify the mobile code against the policy. If the static analysis shows that the mobile code will never violate the policy, nothing needs to do; otherwise it never rejects the code simply but adds dynamic checks to enforce the policy when necessary. Several static analysis optimizing algorithms is also proposed to improve performance of dynamic enforcement.

Anirban Majumdar,Clark Thomborson

DOI: https://doi.org/10.1007/11553939_149

2005-01-01

Abstract:Mobile agent technology is an evolving paradigm that combines the inherent characteristics of intelligent agents, namely, adaptability, reactivity and autonomy with mobility. These characteristics of mobile agents provide an excellent means of meeting the distributed and heterogeneous requirements for many electronic commerce applications involving low bandwidth and intermittently connected networks. However, the lack of security in the form of code confidentiality renders this paradigm unsuitable for commercial software. In this paper, we address the problem of mobile agent security by proposing a novel method of mobile agent obfuscation using the concept of opaque predicates to prevent adversaries from observing the control flow of agent code. We discuss about the efficiency of our proposed methodology by demonstrating that to an adversary, the problem of determining the outcome of such opaque predicates is often intractable.

Tao Liu,Rui Wang,Depei Qian

DOI: https://doi.org/10.3772/j.issn.1002-0470.2012.02.006

2012-01-01

Abstract:Considering that evolutionary networks with dynamic program loading structures introduces potential security problems, some security mechanisms for the mobile code in this kind of networks were proposed. Because the mobile code is in the form of data when in transmission while in the form of program when in execution, the research addressed both the security of static data and the security of dynamic program. A mechanism for verifying the integrity of the mobile code was proposed to ensure the safe transmitting and deploying of the mobile code. The trust platform module was used to generate the encryption key and to verify the hardware and software configurations of the node. The runtime dynamic access control mechanism and the resource monitor management mechanism were proposed to guarantee the mobile code's safe execution. These mechanisms improve the security of evolutionary networks.

Aneta Zwierko,Zbigniew Kotulski

DOI: https://doi.org/10.48550/arXiv.cs/0506103

2005-06-29

Cryptography and Security

Abstract:The recent developments in the mobile technology (mobile phones, middleware) created a need for new methods of protecting the code transmitted through the network. The proposed mechanisms not only secure the compiled program, but also the data, that can be gathered during its "journey". The oldest and the simplest methods are more concentrated on integrity of the code itself and on the detection of unauthorized manipulation. Other, more advanced proposals protect not only the code but also the execution state and the collected data. The paper is divided into two parts. The first one is mostly devoted to different methods of securing the code and protecting its integrity; starting from watermarking and fingerprinting, up to methods designed specially for mobile agent systems: encrypted function, cryptographic traces, time limited black-box security, chained-MAC protocol, publicly-verifiable chained digital signatures The second part presents new concept for providing mobile agents with integrity protection, based on a zero-knowledge proof system.

Jie Yin,Gang Tan,XiaoLong Bai,ShiMin Hu

DOI: https://doi.org/10.1007/s11432-015-5285-y

2015-01-01

Abstract:For security, most web applications are developed in some type-safe language, such as JavaScript or Java. However, there is a huge amount of legacy codes developed in unsafe languages, which provide rich functionality and are more efficient than their type-safe counterparts. To allow browsers to incorporate type-safe components in a secure way, previous approaches use the software-based fault isolation (SFI) to isolate untrusted legacy code. The SFI approach performs machine-code transformation for security, but the downside is the loss of architecture independence. We propose WebC, a system that allows legacy code transmitted over the web via the Low Level Virtual Machine (LLVM) bitcode format. The untrusted bitcode is transformed by WebC into code in the WebC security language, which enforces both memory isolation and control-flow integrity. Compared with previous approaches, WebC is more portable, provides stronger security, and allows more flexible memory management. Experimental results show that the average runtime overhead of WebC is modest.

Mattia Paccamiccio,Leonardo Mostarda

DOI: https://doi.org/10.1007/978-3-030-99619-2_24

2022-05-08

Abstract:The importance of information security dramatically increased and will further grow due to the shape and nature of the modern computing industry. Software is published at a continuously increasing pace. The Internet of Things and security protocols are two examples of domains that pose a great security challenge, due to how diverse the needs for those software may be, and a generalisation of the capabilities regarding the toolchain necessary for testing is becoming a necessity. Oftentimes, these software are designed starting from a formal model, which can be verified with appropriate model checkers. These models, though, do not represent the actual implementation, which can deviate from the model and hence certain security properties might not be inherited from the model, or additional issues could be introduced in the implementation. In this paper we describe a proposal for a novel technique to assess software security properties from LLVM bitcode. We perform various static analyses, such as points-to analysis, call graph and control-flow graph, with the aim of deriving from them an 'accurate enough' formal model of the paths taken by the program, which are then going to be examined via consolidated techniques by matching them against a set of defined rules. The proposed workflow then requires further analysis with more precise methods if a rule is violated, in order to assess the actual feasibility of such path(s). This step is required as the analyses performed to derive the model to analyse are over-approximating the behaviour of the software.

Cryptography and Security

吴建军,高济

DOI: https://doi.org/10.3785/j.issn.1008-973x.2004.07.012

2004-01-01

Abstract:A mobile agent protection scheme based on the non-interactive secure function evaluation was presented using an optimized oblivious transfer (OT) protocol. Most overheads of an OT protocol are modular exponentiations, which are computationally intensive tasks. The expansion from 1-out-of-2 OT protocol to 1-out-of-N OT protocol and the combination of N 1-out-of-2 OT protocol to one 1-out-of-N OT protocol defined a new simultaneous 1-out-of-N OT protocol, where the number of modular exponentiation was consequently reduced to a small constant. The simultaneous OT protocol and the encrypted circuit construction were combined to obtain a non-interactive secure function evaluation protocol. Source host proceeded as Alice, and multiple hosts proceeded as Bob. Each host contributed the part of encrypted circuit that represented its function, thus the resulting encrypted circuit became a cascade of sub-circuits. It is proved that the new scheme has lower overhead and more security, and is easier to implement than other similar systems.

Junhua Ding,Jidong Ge

DOI: https://doi.org/10.1109/apscc.2012.43

2012-01-01

Abstract:Code mobility provides a flexible paradigm for building high performance mobile computing systems. Because code mobility can cause dynamic configuration of system structures in mobile computing systems, assuring design quality of the system is challenge. Formal specification and analysis provide a rigorous way to ensure system requirements are correctly designed. In this paper, we first introduce the formalism developed based on high level Petri nets and a communication channel mechanism for modeling mobile computing systems specifically code mobility. The formalism has the expressive capacity to naturally model mobile computing systems, and easily define mobility and mobile communication properties in the system. Then we model three representative styles of code mobility in mobile computing systems using the formalism. The formal models developed in this paper provide a solid foundation for formal analysis of code mobility. The formal analysis approach used for analyzing the code mobility models is illustrated via model checking the code mobility models using symbolic model checking tool NuSMV. Through successfully modeling and model checking the code mobility, the paper demonstrates that formal specification and modeling checking provide an effective and efficient way to ensure the design quality of mobile computing systems.

Zhejun Fang,Yuqing Zhang,Ying Kong,Qixu Liu

DOI: https://doi.org/10.1002/sec.747

IF: 1.968

2013-03-12

Security and Communication Networks

Abstract:This paper concerns about logic vulnerabilities that result from faulty logic of a web application. Logic vulnerabilities typically accompany with the exposure of unexpected functionalities and lead to the bypass of the intended constraints. From a semantic perspective, logic vulnerabilities occur when mistakes arise in the control flows guarding the processes of invoking critical functionalities. In this paper, we propose the first lightweight static analysis approach to automatically detect logic vulnerabilities in Java web applications. Logic errors in our approach are characterized as erroneous invocations of functionalities. Program‐slicing technique has been leveraged to capture the processes of invoking critical functionalities. A back‐tracing algorithm is originally designed to extract control flows guarding functionality‐invocation processes. Finally, logic vulnerability detection is transformed into mining abnormal functionality‐invocation processes in a cluster of similar ones by comparing these processes' control flows. We implemented our approach in a prototype tool named logic vulnerability detector and evaluated it on seven real‐world applications scaled from thousands to million lines of code. The evaluation results show that our approach achieves bigger coverage with acceptable cost and better scalability than previous approaches. Copyright © 2013 John Wiley & Sons, Ltd. In this paper, we propose the first lightweight static analysis approach to automatically detect logic vulnerabilitiesin Java web applications. We implemented our approach using program‐slicing technique and a back‐tracingextracting algorithm for control flow, and evaluated it on seven real‐world applications scaled from thousands to million lines of code. The evaluation results show that our approach achieves bigger coverage with acceptable cost and better scalability than previous approaches.

computer science, information systems,telecommunications

Ping Wang,Kuo-Ming Chao,Chi-Chun Lo,Yu-Shih Wang

DOI: https://doi.org/10.1007/s10799-014-0213-1

2015-01-01

Information Technology and Management

Abstract:Existing studies on the detection of mobile malware have focused mainly on static analyses performed to examine the code-structure signature of viruses, rather than the dynamic behavioral aspects. By contrast, the unidentified behavior of new mobile viruses using the self-modification, polymorphic, and mutation techniques for variants have largely been ignored. The problem of precision regarding malware variant detection has become one of the key concerns in mobile security. Accordingly, the present study proposed a threat risk analysis model for mobile viruses, using a heuristic approach incorporating both malware behavior analysis and code analysis to generate a virus behavior ontology associated with the Protégé platform. The proposed model can not only explicitly identify an attack profile in accordance with structural signature of mobile viruses, but also overcome the uncertainty regarding the probability of an attack being successful. This model is able to achieve this by extending frequent episode rules to investigate the attack profile of a given malware, using specific event sequences associated with the sandbox technique for mobile applications (apps) and hosts. For probabilistic analysis, defense evaluation metrics for each node were used to simulate the results of an attack. The simulations focused specifically on the attack profile of a botnet to assess the threat risk. The validity of the proposed approach was demonstrated numerically by using two malware cyber-attack examples. Overall, the results presented in this paper prove that the proposed scheme offers an effective countermeasure, evaluated using a set of security metrics, for mitigating network threats by considering the interaction between the attack profiles and defense needs.

Anirban Majumdar,Clark Thomborson

DOI: https://doi.org/10.1007/11427995_90

2005-01-01

Abstract:Mobile agent technology is an evolving paradigm that combines the inherent characteristics of intelligent agents, namely, adaptability, reactivity and autonomy with mobility. These characteristics of mobile agents provide an excellent means of meeting the distributed and heterogeneous requirements of many military applications that involve low bandwidth and intermittently connected networks. In typical military applications, mobile agents can be used to perform information push, information pull, and sentinel monitoring [1].

Alfred Ka Yiu Wong,Nandan Paramesh,Pradeep Kumar Ray

2005-01-01

Abstract:Ontological issues have been widely researched, especially in the semantic web where ontologies are developed to strengthen the semantic layer of web information. As a result, the proliferation of ontologies necessitates a mapping approach. The existing mapping approaches are generally developed for generic ontologies such as linguistic ontologies. We envisage ontologies as formal knowledge bases basing on which mobile intelligent agents will communicate and reason with in order to perform collaborative and distributive problem resolution in a dynamic environment. Furthermore, the volatility of the environment often requires approximation in reasoning. We present a similarity-based approach to ontology mapping for ontologies formally modeled in logic. The approach is based around a similarity function and uses SLD resolution as the basis to measure semantic likeness between concepts. In validation of our concept, the approach is experimented in the network security domain.

Ken Samuel,Leo Obrst,Suzette Stoutenberg,Karen Fox,Paul Franklin,Adrian Johnson,Ken Laskey,Deborah Nichols,Steve Lopez,Jason Peterson

DOI: https://doi.org/10.48550/arXiv.0711.3419

2007-11-22

Abstract:To appear in Theory and Practice of Logic Programming (TPLP), 2008. We are researching the interaction between the rule and the ontology layers of the Semantic Web, by comparing two options: 1) using OWL and its rule extension SWRL to develop an integrated ontology/rule language, and 2) layering rules on top of an ontology with RuleML and OWL. Toward this end, we are developing the SWORIER system, which enables efficient automated reasoning on ontologies and rules, by translating all of them into Prolog and adding a set of general rules that properly capture the semantics of OWL. We have also enabled the user to make dynamic changes on the fly, at run time. This work addresses several of the concerns expressed in previous work, such as negation, complementary classes, disjunctive heads, and cardinality, and it discusses alternative approaches for dealing with inconsistencies in the knowledge base. In addition, for efficiency, we implemented techniques called extensionalization, avoiding reanalysis, and code minimization.

Artificial Intelligence

Ran Elgedawy,John Sadik,Senjuti Dutta,Anuj Gautam,Konstantinos Georgiou,Farzin Gholamrezae,Fujiao Ji,Kyungchan Lim,Qian Liu,Scott Ruoti

2024-02-01

Abstract:$ $Large Language Models (LLMs) are being increasingly utilized in various applications, with code generations being a notable example. While previous research has shown that LLMs have the capability to generate both secure and insecure code, the literature does not take into account what factors help generate secure and effective code. Therefore in this paper we focus on identifying and understanding the conditions and contexts in which LLMs can be effectively and safely deployed in real-world scenarios to generate quality code. We conducted a comparative analysis of four advanced LLMs--GPT-3.5 and GPT-4 using ChatGPT and Bard and Gemini from Google--using 9 separate tasks to assess each model's code generation capabilities. We contextualized our study to represent the typical use cases of a real-life developer employing LLMs for everyday tasks as work. Additionally, we place an emphasis on security awareness which is represented through the use of two distinct versions of our developer persona. In total, we collected 61 code outputs and analyzed them across several aspects: functionality, security, performance, complexity, and reliability. These insights are crucial for understanding the models' capabilities and limitations, guiding future development and practical applications in the field of automated code generation.

Cryptography and Security,Artificial Intelligence

Jun-Qing Chen,Linpeng Huang,Han Huang,Chengyuan Yu,Chen Li

DOI: https://doi.org/10.1109/CSC.2012.24

2012-01-01

Abstract:How to protect sensible resources is an important issue in the development of web service applications. This paper presents a formal model for resource protections, aiming at statically analyzing and verifying that the applications use these resources in a valid manner, i.e., obeying all the protection policies. The policies are logical properties of resource usage behaviors. The usage behaviors are extracted from the execution of web services by a type and effect system, and represented as concurrent regular expressions. After a suitable transformation, the expressions can be checked for validity by model-checking tools. Web service applications use the resources correctly if their concurrent regular expressions are verified valid. The analysis result shows our approach can improve system performances in comparison with runtime checkers, e. g., execution monitors.

Marco Pistoia

DOI: https://doi.org/10.1145/2810103.2812703

2015-10-12

Abstract:Program analysis has become an essential tool to verify the correctness of programs before these are deployed to end users' computers and devices. Detecting security problems in today's mobile applications by just relying on manual code inspection is unrealistic. Testing is also limited because there is often no guarantee that all the possible paths of execution of an application are tested under all the possible inputs, and so false negatives may arise. Static analysis is a very promising solution but suffers from the dual problem of false positives. A combination of static and dynamic analysis mitigates the disadvantages that arise when static and dynamic analysis are executed individually and is, therefore, the recommended solution to detect and correct application-level cyber security attacks in mobile applications. This tutorial presents both static and dynamic analysis approaches to enforce privacy of mobile applications, and includes a hands-on lab that teaches the audience how to use create a static-analysis solution that verifies the integrity and confidentiality of the data managed by the program itself.

Marco Patrignani,Sam Blackshear

DOI: https://doi.org/10.48550/arXiv.2110.05043

2022-05-13

Abstract:A program that maintains key safety properties even when interacting with arbitrary untrusted code is said to enjoy \emph{robust safety}. Proving that a program written in a mainstream language is robustly safe is typically challenging because it requires static verification tools that work precisely even in the presence of language features like dynamic dispatch and shared mutability. The emerging \move programming language was designed to support strong encapsulation and static verification in the service of secure smart contract programming. However, the language design has not been analyzed using a theoretical framework like robust safety. In this paper, we define robust safety for the \move language and introduce a generic framework for static tools that wish to enforce it. Our framework consists of two abstract components: a program verifier that can prove an invariant holds in a closed-world setting (e.g., the Move Prover), and a novel \emph{encapsulator} that checks if the verifier's result generalizes to an open-world setting. We formalise an escape analysis as an instantiation of the encapsulator and prove that it attains the required security properties. Finally, we implement our encapsulator as an extension to the Move Prover and use the combination to analyze a representative benchmark set of real-world \move programs. This toolchain certifies $>$99\% of the \move modules we analyze, validating that automatic enforcement of strong security properties like robust safety is practical for \move.

Programming Languages

Sung Yong Kim,Zhiyu Fan,Yannic Noller,Abhik Roychoudhury

2024-05-07

Abstract:Despite the impressive performance of Large Language Models (LLMs) in software development activities, recent studies show the concern of introducing vulnerabilities into software codebase by AI programming assistants (e.g., Copilot, CodeWhisperer). In this work, we present Codexity, a security-focused code generation framework integrated with five LLMs. Codexity leverages the feedback of static analysis tools such as Infer and CppCheck to mitigate security vulnerabilities in LLM-generated programs. Our evaluation in a real-world benchmark with 751 automatically generated vulnerable subjects demonstrates Codexity can prevent 60% of the vulnerabilities being exposed to the software developer.

Software Engineering

Ziyi Yang,Shreyas S. Raman,Ankit Shah,Stefanie Tellex

DOI: https://doi.org/10.48550/arXiv.2309.09919

IF: 3.7

2023-09-18

Robotics

Abstract:Recent advancements in large language models (LLMs) have enabled a new research domain, LLM agents, for solving robotics and planning tasks by leveraging the world knowledge and general reasoning abilities of LLMs obtained during pretraining. However, while considerable effort has been made to teach the robot the "dos," the "don'ts" received relatively less attention. We argue that, for any practical usage, it is as crucial to teach the robot the "don'ts": conveying explicit instructions about prohibited actions, assessing the robot's comprehension of these restrictions, and, most importantly, ensuring compliance. Moreover, verifiable safe operation is essential for deployments that satisfy worldwide standards such as ISO 61508, which defines standards for safely deploying robots in industrial factory environments worldwide. Aiming at deploying the LLM agents in a collaborative environment, we propose a queryable safety constraint module based on linear temporal logic (LTL) that simultaneously enables natural language (NL) to temporal constraints encoding, safety violation reasoning and explaining, and unsafe action pruning. To demonstrate the effectiveness of our system, we conducted experiments in VirtualHome environment and on a real robot. The experimental results show that our system strictly adheres to the safety constraints and scales well with complex safety constraints, highlighting its potential for practical utility.