Sat 13 Jan 2018 11:40 - 11:45 at Hershey - Short Talks Session Chair(s): Dominique Devriese

A retrofitting transformation modifies an input program by adding instrumentation to monitor security properties at runtime. These tools often transform the input program in complex ways. Compiler optimizations can erroneously remove the instrumentation added by a retrofitting transformation in the presence of semantic mismatches between the assumptions of retrofitting transformations and compiler optimizations. This talk will highlight a strategy to ascertain that every event of interest that is checked in the retrofitted program is also checked after optimizations. Our initial experiments have identified bugs both in previously proposed retrofitting transformations and our implementations of retrofitting transformations.

Santosh-Nagarakatte-Prisc2018-talk (santosh-nagarakatte-prisc2018.pdf)5.15MiB

Sat 13 Jan