HOME | ENGLISH | IMPRESSUM | KIT

Konferenzartikel: Tool Demonstration: JOANA

[demojoana16]Jürgen Graf, Martin Hecker, Martin Mohr, Gregor Snelting, Tool Demonstration: JOANA, Piessens, Frank and Vigan{\`o}, Luca (Ed.), Principles of Security and Trust - 5th International Conference, POST 2016, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2016, Eindhoven, The Netherlands, April 2-8, 2016, Proceedings, pp. 89--93, Springer Berlin Heidelberg, 2016.

Zusammenfassung

JOANA is a tool for information flow control, which can handle full Java with unlimited threads and scales to ca. 100kLOC. JOANA uses a new algorithm for checking probabilistic noninterference, named RLSOD. JOANA uses a stack of sophisticated program analysis techniques which minimise false alarms. JOANA is open source (joana.ipd.kit.edu) and offers an Eclipse GUI as well as an API. The current tool demonstration paper concentrates on JOANA's precision. Effects of flow-sensitivity, context-sensitivity, and object-sensitivity are explained, as well as precision gains from the new RLSOD criterion.

Download

  [PDF]   [DOI]

Original article available at springerlink.com.

BibTeX

Institutsinterne Autoren

Lehrstuhlinhaber
Prof. Gregor Snelting
Wissenschaftliche Mitarbeiter
Martin Hecker
Martin Mohr
Ehemalige Mitarbeiter
Dr.-Ing. Jürgen Graf

Projekte

Projekt
IFC for Mobile Components
VALSOFT/Joana