MAIS

News
Staff
Open Positions
Research
- Research Areas
- Publications
- Tools
- Third Party Funded Projects
  - SeRCA
  - SF 4.0
  - RSCP
  - RS3
- Collaborators
Teaching
Thesis and HiWi Topics
Contact

Secure Component-Based Development of Large Software Systems

The part project "Secure Component-Based Development of Large Software Systems" is part of the Center for Research in Security and Privacy (CRISP). It is funded by the German Federal Ministry of Education and Research.

(Official CRISP website of this project)

Summary

Ensuring security in real-world complex software systems is challenging: these systems consist of a great number of interacting components, make extensive use of software libraries, and often contain weaknesses in many different abstraction layers.

This project is aimed at an answer to this challenge by providing a framework for introducing and enforcing security in the development of large complex software systems. The security-at-large paradigm shall be facilitated by its close integration into the software development process.

The resulting framework will leverage compositional analysis to combat the complexity of component-based software, will examine vulnerabilities in multiple layers to foil penetration below abstraction, and will integrate complementary methods and tools to obtain comprehensive analysis results.

The focus of this project will be on three aspects: the static security analysis of software components, the security analysis of library functions, and the dynamic security analysis of complex systems. The combination of these three aspects is essential for the effective development and verification of large software systems, and, hence, for the realization of the security-at-large paradigm.

Our Research in CRISP

Rely-guarantee-style reasoning:

We developed rely-guarantee-style reasoning techniques for the modular and precise security verification of distributed systems where different components communicate with each other via message passing. Our development combines compositional reasoning and security type systems to ensure that there is no harmful information leakage in distributed systems. The ability to exploit assumptions in compositional security verification significantly improves the precision of the verification. Our results are currently under evaluation in a top conference.

Verification of whole-system security:

Together with the Software Technology Group at TU Darmstadt, we are developing techniques for verifying the security of whole software systems including applications and the libraries they use. The verification is compositional: the application and the libraries are analyzed isolation, and the analysis results for these two parts are combined via an interface specification. This specification is in a language developed in the spirit of RIFL.

Relevant Publications

Melanie Jehn. A Performance Evaluation on Dynamic Enforcement Frameworks. Bachelor's thesis, TU Darmstadt, 2019.
[ BibTeX entry ]
Thomas Kreutz. Towards Enforcing Dynamic Security Policies in Java Programs. Bachelor's thesis, TU Darmstadt, 2019.
[ BibTeX entry ]
Yuri Gil Dantas, Tobias Hamann and Heiko Mantel. A Comparative Study across Static and Dynamic Side-Channel Countermeasures. In Proceedings of the 11th International Symposium on Foundations & Practice of Security (FPS), pages 173-189, 2018.
[ BibTeX entry | PDF ]
Sebastian Frantzen. Runtime Monitoring and Enforcement Mechanism in the Floodlight SDN Controller. Master Thesis, TU Darmstadt, 2018.
[ BibTeX entry ]
Ben Hermann, Ximeng Li, Heiko Mantel, Mira Mezini, Markus Tasch and Florian Wendel. Requirements for a Specification Language for Data and Information Flow, and A Literature Review of Analytical and Constructive Research on the Java Native Interface. TU Darmstadt, Technical Report TUD-CS-2017-0025, 2017.
[ BibTeX entry | PDF ]
Ximeng Li, Heiko Mantel and Markus Tasch. Taming Message-passing Communication in Compositional Reasoning about Confidentiality. In Proceedings of the 15th Asian Symposium on Programming Languages and Systems (APLAS), pages 45-66, 2017.
[ BibTeX entry | PDF ]
Aslan Askarov, Stephen Chong and Heiko Mantel. Hybrid Monitors for Concurrent Noninterference. In Proceedings of the 28th IEEE Computer Security Foundations Symposium (CSF), pages 137-151. IEEE Computer Society, 2015.
[ BibTeX entry | PDF ]
Heiko Mantel, Markus Müller-Olm, Matthias Perner and Alexander Wenner. Using Dynamic Pushdown Networks to Automate a Modular Information-Flow Analysis. In Pre-Proceedings of the 25th International Symposium on Logic Based Program Synthesis and Transformation (LOPSTR), 2015.
[ BibTeX entry | PDF ]
Heiko Mantel, David Sands and Henning Sudbrock. Assumptions and Guarantees for Compositional Noninterference. In Proceedings of the 24th IEEE Computer Security Foundations Symposium (CSF), pages 218-232. IEEE Computer Society, 2011.
[ BibTeX entry | PDF | Proofs and Addendum ]