IBOS: A correct-by-construction modular browser

Ralf Sasse; Samuel T. King; José Meseguer; Shuo Tang

doi:10.1007/978-3-642-35861-6_14

IBOS: A correct-by-construction modular browser

Ralf Sasse, Samuel T. King, José Meseguer, Shuo Tang

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Current web browsers are complex, have enormous trusted computing bases, and provide attackers with easy access to computer systems. This makes web browser security a difficult issue that increases in importance as more and more applications move to the web. Our approach for this challenge is to design and build a correct-by-construction web browser, called IBOS, that consists of multiple concurrent components, with a small required trusted computing base. We give a formal specification of the design of this secure-by-construction web browser in rewriting logic. We use formal verification of that specification to prove the desired security properties of the IBOS design, including the address bar correctness and the same-origin policy.

Original language	English (US)
Title of host publication	Formal Aspects of Component Software - 9th International Symposium, FACS 2012, Revised Selected Papers
Pages	224-241
Number of pages	18
DOIs	https://doi.org/10.1007/978-3-642-35861-6_14
State	Published - 2013
Event	9th International Symposium on Formal Aspects of Component Software, FACS 2012 - Mountain View, CA, United States Duration: Sep 12 2012 → Sep 14 2012

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	7684 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	9th International Symposium on Formal Aspects of Component Software, FACS 2012
Country/Territory	United States
City	Mountain View, CA
Period	9/12/12 → 9/14/12

Keywords

Browser security
rewriting logic
same-origin policy

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science(all)

Online availability

10.1007/978-3-642-35861-6_14

Library availability

Discover UIUC Full Text

Cite this

Sasse, R., King, S. T., Meseguer, J., & Tang, S. (2013). IBOS: A correct-by-construction modular browser. In Formal Aspects of Component Software - 9th International Symposium, FACS 2012, Revised Selected Papers (pp. 224-241). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7684 LNCS). https://doi.org/10.1007/978-3-642-35861-6_14

IBOS: A correct-by-construction modular browser. / Sasse, Ralf; King, Samuel T.; Meseguer, José et al.
Formal Aspects of Component Software - 9th International Symposium, FACS 2012, Revised Selected Papers. 2013. p. 224-241 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 7684 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Sasse, R, King, ST, Meseguer, J & Tang, S 2013, IBOS: A correct-by-construction modular browser. in Formal Aspects of Component Software - 9th International Symposium, FACS 2012, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 7684 LNCS, pp. 224-241, 9th International Symposium on Formal Aspects of Component Software, FACS 2012, Mountain View, CA, United States, 9/12/12. https://doi.org/10.1007/978-3-642-35861-6_14

Sasse R, King ST, Meseguer J, Tang S. IBOS: A correct-by-construction modular browser. In Formal Aspects of Component Software - 9th International Symposium, FACS 2012, Revised Selected Papers. 2013. p. 224-241. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-642-35861-6_14

@inproceedings{bc3182ec26e6434682349866f01447d1,

title = "IBOS: A correct-by-construction modular browser",

abstract = "Current web browsers are complex, have enormous trusted computing bases, and provide attackers with easy access to computer systems. This makes web browser security a difficult issue that increases in importance as more and more applications move to the web. Our approach for this challenge is to design and build a correct-by-construction web browser, called IBOS, that consists of multiple concurrent components, with a small required trusted computing base. We give a formal specification of the design of this secure-by-construction web browser in rewriting logic. We use formal verification of that specification to prove the desired security properties of the IBOS design, including the address bar correctness and the same-origin policy.",

keywords = "Browser security, rewriting logic, same-origin policy",

author = "Ralf Sasse and King, {Samuel T.} and Jos{\'e} Meseguer and Shuo Tang",

year = "2013",

doi = "10.1007/978-3-642-35861-6_14",

language = "English (US)",

isbn = "9783642358609",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "224--241",

booktitle = "Formal Aspects of Component Software - 9th International Symposium, FACS 2012, Revised Selected Papers",

note = "9th International Symposium on Formal Aspects of Component Software, FACS 2012 ; Conference date: 12-09-2012 Through 14-09-2012",

}

TY - GEN

T1 - IBOS

T2 - 9th International Symposium on Formal Aspects of Component Software, FACS 2012

AU - Sasse, Ralf

AU - King, Samuel T.

AU - Meseguer, José

AU - Tang, Shuo

PY - 2013

Y1 - 2013

N2 - Current web browsers are complex, have enormous trusted computing bases, and provide attackers with easy access to computer systems. This makes web browser security a difficult issue that increases in importance as more and more applications move to the web. Our approach for this challenge is to design and build a correct-by-construction web browser, called IBOS, that consists of multiple concurrent components, with a small required trusted computing base. We give a formal specification of the design of this secure-by-construction web browser in rewriting logic. We use formal verification of that specification to prove the desired security properties of the IBOS design, including the address bar correctness and the same-origin policy.

AB - Current web browsers are complex, have enormous trusted computing bases, and provide attackers with easy access to computer systems. This makes web browser security a difficult issue that increases in importance as more and more applications move to the web. Our approach for this challenge is to design and build a correct-by-construction web browser, called IBOS, that consists of multiple concurrent components, with a small required trusted computing base. We give a formal specification of the design of this secure-by-construction web browser in rewriting logic. We use formal verification of that specification to prove the desired security properties of the IBOS design, including the address bar correctness and the same-origin policy.

KW - Browser security

KW - rewriting logic

KW - same-origin policy

UR - http://www.scopus.com/inward/record.url?scp=84872717130&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84872717130&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-35861-6_14

DO - 10.1007/978-3-642-35861-6_14

M3 - Conference contribution

AN - SCOPUS:84872717130

SN - 9783642358609

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 224

EP - 241

BT - Formal Aspects of Component Software - 9th International Symposium, FACS 2012, Revised Selected Papers

Y2 - 12 September 2012 through 14 September 2012

ER -

IBOS: A correct-by-construction modular browser

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this