Verifying security invariants in ExpressOS
… verify security invariants in ExpressOS with both code contracts and Dafny annotations. Code
contracts are verified … Based on their charactertics, we verified simpler security invariants …
contracts are verified … Based on their charactertics, we verified simpler security invariants …
{VeriSMo}: A verified security module for confidential {VMs}
… achieved through our optimized verification design and the use … first verified security module
operating within a confidential VM. … of invariant for gvar since it fails the invariant at Line 15. …
operating within a confidential VM. … of invariant for gvar since it fails the invariant at Line 15. …
[PDF][PDF] Survey of Approaches for Security Verification of Hardware/Software Systems.
… to check security guarantees, which we discussed in the previous section. The general flow
of the security verification … a search to check whether the security invariants always hold. …
of the security verification … a search to check whether the security invariants always hold. …
A learning-based approach to synthesizing invariants for incomplete verification engines
… In this paper, we investigate data-driven invariant synthesis for incomplete verification engines
and show that the problem can be reduced to ICE learning if the learning algorithm learns …
and show that the problem can be reduced to ICE learning if the learning algorithm learns …
[图书][B] Building abstractions for fast, secure, reliable computer systems
H Mai - 2013 - search.proquest.com
… Our experience with ExpressOS shows that verifying security invariants in a practical
large-… of ExpressOS shows that this type of OS can be practical and it improves the security of …
large-… of ExpressOS shows that this type of OS can be practical and it improves the security of …
[图书][B] Automated deductive verification of systems software
E Pek - 2015 - search.proquest.com
… We verify security invariants in ExpressOS with both code contracts and Dafny annotations.
Code contracts have low annotation overhead but are unable to reason about complicated …
Code contracts have low annotation overhead but are unable to reason about complicated …
Invariant synthesis for incomplete verification engines
… We propose a framework for synthesizing inductive invariants for incomplete verification …
allows verification engines to communicate non-provability information to guide invariant …
allows verification engines to communicate non-provability information to guide invariant …
[PDF][PDF] A Survey of Formal Verification Approaches for Practical Systems
… ExpressOS is a new OS architecture that provides formally verified security invariants to
mobile applications [7]. In contrast to prior OS verification effort that aimed at full functional …
mobile applications [7]. In contrast to prior OS verification effort that aimed at full functional …
[PDF][PDF] The Formal Development and Hardware/Software Co-Design of A Hypervisor Based Embedded Real-Time Secure Operating System Kernel-A Research …
Q Tong, JC Guo, D Xiao, LM Yin, MY Zhu - researchgate.net
… methods to verify that the system satisfies the security invariants required by the specifications.
… ExpressOS is a new OS architecture that provides formally verified security invariants to …
… ExpressOS is a new OS architecture that provides formally verified security invariants to …
A survey of practical formal methods for security
… Another example is Reference [170], where the authors verify security policies in the form
of invariants annotating the code of ExpressOS, a secure OS alternative to Android. The …
of invariants annotating the code of ExpressOS, a secure OS alternative to Android. The …