Write a Blog >>
Sun 22 - Fri 27 October 2017 Vancouver, Canada
Fri 27 Oct 2017 10:52 - 11:15 at Regency C - Static Analysis Chair(s): Christian Hammer

Static information-flow analysis (especially taint-analysis) is a key technique in software security, computing where sensitive or untrusted data can propagate in a program. Points-to analysis is a fundamental static program analysis, computing what abstract objects a program expression may point to. In this work, we propose a deep unification of information-flow and points-to analysis. We observe that information-flow analysis is not a mere high-level client of points-to information, but it is indeed identical to points-to analysis on artificial abstract objects that represent different information sources. The very same algorithm can compute, simultaneously, two interlinked but separate results (points-to and information-flow values) with changes only to its initial conditions.

The benefits of such a unification are manifold. We can use existing points-to analysis implementations, with virtually no modification (only minor additions of extra logic for sanitization) to compute information flow concepts, such as value tainting. The algorithmic enhancements of points-to analysis (e.g., different flavors of context sensitivity) can be applied transparently to information-flow analysis. Heavy engineering work on points-to analysis (e.g., handling of the reflection API for Java) applies to information-flow analysis without extra effort. We demonstrate the benefits in a realistic implementation that leverages the Doop points-to analysis framework (including its context-sensitivity and reflection analysis features) to provide an information-flow analysis with excellent precision (over 91%) and recall (over 99%) for standard information-flow benchmarks.

Fri 27 Oct
Times are displayed in time zone: (GMT-07:00) Tijuana, Baja California change

10:30 - 12:00: OOPSLA - Static Analysis at Regency C
Chair(s): Christian HammerUniversity of Potsdam
splash-2017-OOPSLA10:30 - 10:52
Johannes Sp├ĄthFraunhofer IEM, Karim AliUniversity of Alberta, Eric BoddenHeinz Nixdorf Institut, Paderborn University and Fraunhofer IEM
splash-2017-OOPSLA10:52 - 11:15
Neville Grech, Yannis SmaragdakisUniversity of Athens
splash-2017-OOPSLA11:15 - 11:37
Sehun JeongKorea University, South Korea, Minseok JeonKorea University, South Korea, Sungdeok (Steve) ChaKorea University, South Korea, Hakjoo OhKorea University
splash-2017-OOPSLA11:37 - 12:00
Kwonsoo ChaeKorea University, Hakjoo OhKorea University, Kihong HeoUniversity of Pennsylvania, USA, Hongseok YangUniversity of Oxford