Bridging the Hardware-Software Gap: A Proof-Carrying Approach for Computer Systems Trust Evaluation(5.3.5)

Abstract

This project will explore the idea of unifying security analysis across the boundary of hardware and software. The PI will create a system level security property library to facilitate computer system designers in developing system-level security specifications. He will also develop methodologies for hierarchical proof construction and code conversion from hardware description languages (HDLs) and software programs to the same dependently typed language. The project will have four tasks: 1) To define fundamental system-level security property PI will define security properties for computer systems that can be used to check and validate whether a system is in compliance so that potential vulnerabilities can be eliminated or mitigated. The set of security properties will identify attack vectors and protect the computer system. 2) To create platform formal representatives of a computer systems Based on task 1, PI will formally define a unified framework representing the whole computer system in the same formal language. The conversion of the original software/hardware code into the formal language helps eliminating the hardware-software boundary, which serves as the basis for the proposed cross-layer security property validation. 3) To deal with scalability and build hierarchical proof construction process PI will deal with the scalability in order to make the proposed methodology easily suited to large-scale computer systems. PI will have to address two types of scaling challenges: 1) code conversion and the 2) proof construction. 4) To demonstrate the system on a chip based Computer System PI will provide proof of concept demonstration by using a complex, SPARC V8 compatible microprocessor architecture to build a sample computer system.

Document Details

Document Type

DoD Grant Award

Publication Date

Jan 12, 2017

Source ID

W911NF1610124

Entities

Tags