Your search keyword '"Cinzia Bernardeschi"' showing total 2 results

1. Using standard verifier to check secure information flow in Java bytecode

Author

Giuseppe Lettieri, Cinzia Bernardeschi, and N. De Francesco

Subjects

Java, Scala, Computer science, Programming language, strictfp, Embedded Java, Java bytecode, Generics in Java, computer.software_genre, Java concurrency, Bytecode, Real time Java, Java API for XML-based RPC, Virtual machine, TheoryofComputation_LOGICSANDMEANINGSOFPROGRAMS, Cross-platform, Operating system, Software_PROGRAMMINGLANGUAGES, Java Card, computer, Java annotation, Java applet, computer.programming_language, Java Modeling Language

Abstract

When an applet is sent over the internet, Java Virtual Machine code is transmitted and remotely executed. Because untrusted code can be executed on the local computer running the web browser security problems may arise. We present a method to check illicit flows in Java bytecode, that exploits the type-level abstract interpretation of bytecode verification. We present an algorithm transforming a bytecode into another one that, when abstractly executed by the standard bytecode verifier, reveals illicit information flows. We show an example of application of the method.

Published

2003

2. Validating the design of dependable systems

Author

Alessandro Fantechi, Luca Simoncini, and Cinzia Bernardeschi

Subjects

Model checking, Correctness, Computer science, Formal specification, Systems design, Fault tolerance, Temporal logic, System requirements specification, Fault (power engineering), Algorithm, Computer Science::Distributed, Parallel, and Cluster Computing, Reliability engineering

Abstract

The paper presents an approach for the specification and verification of the correctness of dependable system designs achieved by the application of fault tolerant techniques based on equivalence relations and model checking techniques. The behaviour of the system in absence of faults is formally specified and faults are assumed as random events which interfere with the system by modifying its behaviour. The fault tolerant technique is formalized by a context, which specifies how replicas of the system cooperate to deal with faults. The system design is proved to satisfy the correctness property under a given fault hypothesis, by proving the observational equivalence between the system design specification and the fault free system specification. Additionally, model checking of a temporal logic formula which gives an abstract notion of correct behaviour can be applied to verify the correctness of the design.

Published

2002