TY - GEN
T1 - "Function Extraction
T2 - 2024 New Security Paradigms Workshop, NSPW 2024
AU - Linger, Richard
AU - Pleszkoch, Mark
AU - Mcgaughey, Jack
AU - Mchugh, John
AU - Ghardallou, Wided
AU - Mili, Ali
N1 - Publisher Copyright:
Copyright © 2024 held by the owner/author(s). Publication rights licensed to ACM.
PY - 2025/1/16
Y1 - 2025/1/16
N2 - Without secure computer codes, it is impossible to have a fully secure information processing system. This paper proposes the evolving technique of Function Extraction (FX) as part of a novel paradigm for the production of secure computer codes. FX is, in effect, the inverse of formal verification as it analyzes code to produce a mathematical specification of its behavior. This has the potential for identifying unwanted or unexpected behaviors and for analyzing unknown or "found"code artifacts such as malware. The effort is enabled by recent developments in loop analysis that allow invariant relations to be developed for loop bodies enabling the loop function to be discovered. The paper defines program behavior as a mathematical description of the effects of program execution on the environment in which the program runs and continues with a discussion of its current status. As FX is an evolving paradigm, areas in which work remains to be done are discussed and examples of the results of two prototype analyzers are given.
AB - Without secure computer codes, it is impossible to have a fully secure information processing system. This paper proposes the evolving technique of Function Extraction (FX) as part of a novel paradigm for the production of secure computer codes. FX is, in effect, the inverse of formal verification as it analyzes code to produce a mathematical specification of its behavior. This has the potential for identifying unwanted or unexpected behaviors and for analyzing unknown or "found"code artifacts such as malware. The effort is enabled by recent developments in loop analysis that allow invariant relations to be developed for loop bodies enabling the loop function to be discovered. The paper defines program behavior as a mathematical description of the effects of program execution on the environment in which the program runs and continues with a discussion of its current status. As FX is an evolving paradigm, areas in which work remains to be done are discussed and examples of the results of two prototype analyzers are given.
UR - http://www.scopus.com/inward/record.url?scp=85218340173&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85218340173&partnerID=8YFLogxK
U2 - 10.1145/3703465.3703473
DO - 10.1145/3703465.3703473
M3 - Conference contribution
AN - SCOPUS:85218340173
T3 - 2024 New Security Paradigms Workshop, NSPW 2024
SP - 96
EP - 105
BT - 2024 New Security Paradigms Workshop, NSPW 2024
PB - Association for Computing Machinery, Inc
Y2 - 16 September 2024 through 19 September 2024
ER -