Documente Academic
Documente Profesional
Documente Cultură
Robin Sharp
Informatics and Mathematical Modelling
Technical University of Denmark
Phone: (+45) 4525 3749
e-mail: robin@imm.dtu.dk
Basic Ideas
AAAAAAAAAB
User buffer
Overflow
Arguments Arguments
z String operations in C:
strcpy (dst, src);
strncpy(dst, src, sizeof dst);
z Anti-virus systems in
computers sometimes model
these effects to attack “non-
self”. (E.g. IBM anti-virus)
Statement Flow
Denning’s Information Flow
method:
B:=A A→B
z Uses static analysis of if C then B:=A A→B;C→B
program text based on For k:=1 to N do k→stmts
syntax. For example: B:=A stmts end
implies info flow A→B. while k>0 do stmts k→stmts
z Automatic analysis can end
reveal undesired info flows. case(exp) exp→stmts
val1:stmts
z Can be integrated into
compiler or specification B:=fcn(args) fcn→B
tool. open file f —
readf(f,X) f→X
writef(f,X) X→f