zbMATH — the first resource for mathematics

Security for multithreaded programs under cooperative scheduling. (English) Zbl 1185.68230
Virbitskaite, Irina (ed.) et al., Perspectives of systems informatics. 6th international Andrei Ershov memorial conference, PSI 2006, Novosibirsk, Russia, June 27–30, 2006. Revised papers. Berlin: Springer (ISBN 978-3-540-70880-3/pbk). Lecture Notes in Computer Science 4378, 474-480 (2007).
Summary: Information flow exhibited by multithreaded programs is subtle because the attacker may exploit scheduler properties when deducing secret information from publicly observable outputs. Volpano and Smith have introduced a protect command that prevents the scheduler from observing sensitive timing behavior of protected commands and therefore prevents undesired information flows. While a useful construct, protect is nonstandard and difficult to implement. This paper presents a transformation that eliminates the need for protect under cooperative scheduling. We show that both termination-insensitive and termination-sensitive security can be enforced by variants of the transformation in a language with dynamic thread creation.
For the entire collection see [Zbl 1179.68007].

68N30 Mathematical aspects of software engineering (specification, verification, metrics, requirements, etc.)
Full Text: DOI