Formal Verification of Memory Preservation of x86-64 Binaries

Joshua A. Bockenek; Freek Verbeek; Peter Lammich; Binoy Ravindran

Formal Verification of Memory Preservation of x86-64 Binaries

Joshua A. Bockenek, Freek Verbeek, Peter Lammich, Binoy Ravindran

Bio-Health Informatics

Research output: Chapter in Book/Conference proceeding › Conference contribution › peer-review

152 Downloads (Pure)

Abstract

Formal verification of a binary can provide high software assurance, even when the source code is unavailable. It is, however, inherently hard due to the low level of abstraction involved; instead of verifying typed and structured source code, one has to verify machine code or reconstructed assembly. This paper presents a semi-automated methodology for formally verifying memory preservation, as well as register preservation, over disassembled binaries. The methodology is based on formal symbolic execution and Floyd-style verification. We show that the methodology is compositional on the function level, which is crucial for scalability. The methodology works for loops, recursion, and both optimized and non-optimized code. It can be used to expose preconditions required for non-exceptional behavior. We demonstrate applicability by verifying a set of functions from the HermitCore unikernel library.

Original language	English
Title of host publication	38th International Conference on Computer Safety, Reliability and Security
Publication status	Published - 13 Sept 2019
Event	38th International Conference on Computer Safety, Reliability and Security - Turku , Finland Duration: 10 Sept 2019 → 13 Sept 2019

Conference

Conference	38th International Conference on Computer Safety, Reliability and Security
Abbreviated title	SAFECOMP 2019
Country/Territory	Finland
City	Turku
Period	10/09/19 → 13/09/19

Keywords

x86-64
Assembly
Isabelle/HOL
Formal verification

Access to Document

paper_10Accepted author manuscript, 348 KB

https://www.ssrg.ece.vt.edu/papers/safecomp19.pdf

Cite this

@inproceedings{c9a471d328ab4a46bb45f19a6aa4dff8,

title = "Formal Verification of Memory Preservation of x86-64 Binaries",

abstract = "Formal verification of a binary can provide high software assurance, even when the source code is unavailable. It is, however, inherently hard due to the low level of abstraction involved; instead of verifying typed and structured source code, one has to verify machine code or reconstructed assembly. This paper presents a semi-automated methodology for formally verifying memory preservation, as well as register preservation, over disassembled binaries. The methodology is based on formal symbolic execution and Floyd-style verification. We show that the methodology is compositional on the function level, which is crucial for scalability. The methodology works for loops, recursion, and both optimized and non-optimized code. It can be used to expose preconditions required for non-exceptional behavior. We demonstrate applicability by verifying a set of functions from the HermitCore unikernel library.",

keywords = "x86-64, Assembly, Isabelle/HOL, Formal verifi cation",

author = "Bockenek, {Joshua A.} and Freek Verbeek and Peter Lammich and Binoy Ravindran",

year = "2019",

month = sep,

day = "13",

language = "English",

booktitle = "38th International Conference on Computer Safety, Reliability and Security",

note = "38th International Conference on Computer Safety, Reliability and Security, SAFECOMP 2019 ; Conference date: 10-09-2019 Through 13-09-2019",

}

TY - GEN

T1 - Formal Verification of Memory Preservation of x86-64 Binaries

AU - Bockenek, Joshua A.

AU - Verbeek, Freek

AU - Lammich, Peter

AU - Ravindran, Binoy

PY - 2019/9/13

Y1 - 2019/9/13

N2 - Formal verification of a binary can provide high software assurance, even when the source code is unavailable. It is, however, inherently hard due to the low level of abstraction involved; instead of verifying typed and structured source code, one has to verify machine code or reconstructed assembly. This paper presents a semi-automated methodology for formally verifying memory preservation, as well as register preservation, over disassembled binaries. The methodology is based on formal symbolic execution and Floyd-style verification. We show that the methodology is compositional on the function level, which is crucial for scalability. The methodology works for loops, recursion, and both optimized and non-optimized code. It can be used to expose preconditions required for non-exceptional behavior. We demonstrate applicability by verifying a set of functions from the HermitCore unikernel library.

AB - Formal verification of a binary can provide high software assurance, even when the source code is unavailable. It is, however, inherently hard due to the low level of abstraction involved; instead of verifying typed and structured source code, one has to verify machine code or reconstructed assembly. This paper presents a semi-automated methodology for formally verifying memory preservation, as well as register preservation, over disassembled binaries. The methodology is based on formal symbolic execution and Floyd-style verification. We show that the methodology is compositional on the function level, which is crucial for scalability. The methodology works for loops, recursion, and both optimized and non-optimized code. It can be used to expose preconditions required for non-exceptional behavior. We demonstrate applicability by verifying a set of functions from the HermitCore unikernel library.

KW - x86-64

KW - Assembly

KW - Isabelle/HOL

KW - Formal verification

M3 - Conference contribution

BT - 38th International Conference on Computer Safety, Reliability and Security

T2 - 38th International Conference on Computer Safety, Reliability and Security

Y2 - 10 September 2019 through 13 September 2019

ER -

Formal Verification of Memory Preservation of x86-64 Binaries

Abstract

Conference

Keywords

Access to Document

Fingerprint

Cite this