An efficient method of computing static single assignment form
POPL '89 Proceedings of the 16th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
PLDI '90 Proceedings of the ACM SIGPLAN 1990 conference on Programming language design and implementation
A Combined Approach for Information Flow Analysis in Fault Tolerant Hardware
ICECCS '07 Proceedings of the 12th IEEE International Conference on Engineering Complex Computer Systems
Integrating hardware and software information flow analyses
Proceedings of the 2009 ACM SIGPLAN/SIGBED conference on Languages, compilers, and tools for embedded systems
SIFA: a tool for evaluation of high-grade security devices
ACISP'05 Proceedings of the 10th Australasian conference on Information Security and Privacy
Language-based information-flow security
IEEE Journal on Selected Areas in Communications
Data flow analysis of embedded program expressions
AISC '12 Proceedings of the Tenth Australasian Information Security Conference - Volume 125
| Hi-index | 0.00 |
Defence organisations perform information security evaluations to confirm that electronic communications devices are safe to use in security--critical situations. Such evaluations include tracing all possible dataflow paths through the device, but this process is tedious and error--prone, so automated reachability analysis tools are needed to make security evaluations faster and more accurate. Previous research has produced a tool, Sifa, for dataflow analysis of basic digital circuitry, but it cannot analyse dataflow through microprocessors embedded within the circuit since this depends on the software they run. We have developed a static analysis tool that produces Sifa-compatible dataflow graphs from embedded microcontroller programs written in C. In this paper we present a case study which shows how this new capability supports combined hardware and software dataflow analyses of a security-critical communications device.