Hyperproperties are commonly used in computer security to define information-flow policies and other requirements that reason about the relationship between multiple computations. In this paper, we study a novel class of hyperproperties where the individual computation paths are chosen by the strategic choices of a coalition of agents in a multi-agent system. We introduce HyperATL*, an extension of computation tree logic with path variables and strategy quantifiers. Our logic can express strategic hyperproperties, such as that the scheduler in a concurrent system has a strategy to avoid information leakage. HyperATL* is particularly useful to specify asynchronous hyperproperties, i.e., hyperproperties where the speed of the execution on the different computation paths depends on the choices of the scheduler. Unlike other recent logics for the specification of asynchronous hyperproperties, our logic is the first to admit decidable model checking for the full logic. We present a model checking algorithm for HyperATL* based on alternating automata, and show that our algorithm is asymptotically optimal by providing a matching lower bound. We have implemented a prototype model checker for a fragment of HyperATL*, able to check various security properties on small programs.
翻译:计算机安全中通常使用超异性, 来定义信息流政策和其他要求, 从而解释多重计算之间的关系。 在本文中, 我们研究一种新型超异性, 个人计算路径是由多试系统中的代理器联盟的战略选择所选择的。 我们引入了超超ATL*, 这是计算树逻辑的延伸, 带有路径变量和战略量化符。 我们的逻辑可以表达战略超异性, 比如, 同步系统中的调度器有一个避免信息泄漏的战略。 HyperATL* 特别有用, 以指定非同步性超异性, 即超异性, 不同计算路径的执行速度取决于调度器的选择。 不同于最近其它关于非同步性超异性规范的逻辑, 我们的逻辑是首先承认完全逻辑的可辨别模式检查。 我们为超异性ATL* 提供了基于交替自动数据的战略, 并显示我们的算法通过提供匹配的下框程序, 即超异性超异性超异性超异性超异性, 即超异性最优化 。 我们已经在低框中执行了各种原型安全性样检查器。 我们能够对小的磁件进行检查。
相关内容
- Today (iOS and OS X): widgets for the Today view of Notification Center
- Share (iOS and OS X): post content to web services or share content with others
- Actions (iOS and OS X): app extensions to view or manipulate inside another app
- Photo Editing (iOS): edit a photo or video in Apple's Photos app with extensions from a third-party apps
- Finder Sync (OS X): remote file storage in the Finder with support for Finder content annotation
- Storage Provider (iOS): an interface between files inside an app and other apps on a user's device
- Custom Keyboard (iOS): system-wide alternative keyboards
Source: iOS 8 Extensions: Apple’s Plan for a Powerful App Ecosystem
微信扫码咨询专知VIP会员