输出敏感信息流分析

Formal Techniques for (Networked and) Distributed Systems Pub Date : 2019-06-17 DOI:10.23638/LMCS-17(1:15)2021

Cristian Ene, L. Mounier, Marie-Laure Potet

{"title":"输出敏感信息流分析","authors":"Cristian Ene, L. Mounier, Marie-Laure Potet","doi":"10.23638/LMCS-17(1:15)2021","DOIUrl":null,"url":null,"abstract":"Constant-time programming is a countermeasure to prevent cache based attacks where programs should not perform memory accesses that depend on secrets. In some cases this policy can be safely relaxed if one can prove that the program does not leak more information than the public outputs of the computation.","PeriodicalId":448077,"journal":{"name":"Formal Techniques for (Networked and) Distributed Systems","volume":"30 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-06-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Output-Sensitive Information Flow Analysis\",\"authors\":\"Cristian Ene, L. Mounier, Marie-Laure Potet\",\"doi\":\"10.23638/LMCS-17(1:15)2021\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Constant-time programming is a countermeasure to prevent cache based attacks where programs should not perform memory accesses that depend on secrets. In some cases this policy can be safely relaxed if one can prove that the program does not leak more information than the public outputs of the computation.\",\"PeriodicalId\":448077,\"journal\":{\"name\":\"Formal Techniques for (Networked and) Distributed Systems\",\"volume\":\"30 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-06-17\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Formal Techniques for (Networked and) Distributed Systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.23638/LMCS-17(1:15)2021\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Formal Techniques for (Networked and) Distributed Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.23638/LMCS-17(1:15)2021","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

恒定时间编程是一种防止基于缓存的攻击的对策，在这种攻击中，程序不应该执行依赖于秘密的内存访问。在某些情况下，如果可以证明程序泄漏的信息不会超过计算的公开输出，则可以安全地放宽此策略。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Output-Sensitive Information Flow Analysis

Constant-time programming is a countermeasure to prevent cache based attacks where programs should not perform memory accesses that depend on secrets. In some cases this policy can be safely relaxed if one can prove that the program does not leak more information than the public outputs of the computation.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Formal Techniques for (Networked and) Distributed Systems

自引率

0.00%

发文量