Applying flow-sensitive CQUAL to verify MINIX authorization check placement
| Title | Applying flow-sensitive CQUAL to verify MINIX authorization check placement |
| Publication Type | Conference Papers |
| Year of Publication | 2006 |
| Authors | Fraser T, Petroni J., Arbaugh WA |
| Conference Name | Proceedings of the 2006 workshop on Programming languages and analysis for security |
| Date Published | 2006/// |
| Publisher | ACM |
| Conference Location | Ottawa, Ontario, Canada |
| ISBN Number | 1-59593-374-3 |
| Keywords | access controls, cqual, minix |
| Abstract | We present the first use of flow-sensitive CQUAL to verify the placement of operating system authorization checks. Our analysis of MINIX 3 system servers and discovery of a non-exploitable Time-Of-Check/Time-Of-Use bug demonstrate the effectiveness of flow sensitive CQUAL and its advantage over earlier flow-insensitive versions. We also identify and suggest alternatives to current CQUAL usability features that encourage analysts to make omissions that cause the otherwise sound tool to produce false-negative results. |
| DOI | 10.1145/1134744.1134747 |