Question: In the following program, the return value of a call to the method retrieveFromDB is a secret value, and printf prints the message that

 In the following program, the return value of a call to the method  

In the following program, the return value of a call to the method "retrieveFromDB" is a secret value, and printf prints the message that an attacker can observe (public). The program is insecure to allow an attacker to observe its secret data. The violation is through implicit information flow. Note that programmers have written the security requirement as the type qualifiers secret and public. Using tainted flow analysis with the lattice public < secret, how would you precisely identify the implicit flow? Write the constraints and try to solve them. secret int retrieveFromDB(...). void printf(public int i). int ret = retriveFromDB(). int tmp: if(ret == 1){ tmp =Q; } else { } tmp = 1; printf(tmp):

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer
Step: 1 Unlock

The program snippet displayed in the image contains a security issue due to an implicit information flow This refers to a situation where information ... View full answer

blur-text-image
Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock
Step: 3 Unlock

Students Have Also Explored These Related Programming Questions!

Q:

Oak Mart, a producer of solid oak tables, reports the following data from its first year of business. Sales price per unit Units produced this year Units sold this year Variable selling and...

Q:

Planning is one of the most important management functions in any business. A front office managers first step in planning should involve determine the departments goals. Planning also includes...

Q:

You will design and implement your own data class. The class will store data that has been read as user input from the keyboard (see Getting Input below), and provide necessary operations. As the...

Q:

Project 0 Unix/Linux Utilities Before beginning: Read this lab tutorial (Links to an external site.); it has some useful tips for programming in the C environment. In this part of the project, you'll...

Q:

Project 0 Unix/Linux Utilities Before beginning: Read this lab tutorial; it has some useful tips for programming in the C environment. In this part of the project, you'll build a couple of different...

Q:

In this homework, you will implement a factory simulator program with object-oriented approach. In the UML diagrams below, access (getter) and modifier (setter) methods are not shown for simplicity....

Q:

Java War Card Game (based on http://www.bicyclecards.com/how-to-play/war/): The game starts with two players who get half the deck of cards (each player obtaining 26 cards). Both Players flip over...

Q:

Programming Assignment #2: Smart Arrays COP 3502, Fall 2017 Due: Sunday, September 24, before 11:59 PM Table of Contents...

Q:

Table of Contents Abstract........................................................................................................2 1....

Q:

In this homework, you will implement a factory simulator program with object-oriented approach. In the UML diagrams below, access (getter) and modifier (setter) methods are not shown for simplicity....

Q:

Methane at 3 MPa, 300 K is throttled through a valve to 100 kPa. Calculate the exit temperature assuming no changes in the kinetic energy and ideal gas behavior. Repeat the answer for real-gas...

Q:

Belcher Company uses the FIFO method in its process costing system. The Finishing Department started the month with 600 units in process that were 10?% complete, received 3,000 units from the...

Q:

Find the x - values of all points where the function has any relative extrema. Find the value ( s ) of any relative extrema. f ( x ) = - 8 3 x 3 - 4 1 2 x 2 - 5 x 4

Q:

You want to receive 5,000 per month in retirement. If you can earn 0.75% per month and you expect to need the income for 25 years, how much do you need to have in your account at retirement?

Q:

What KPIs (key performance indicators) does Nissan Manufacturing use regarding organizational diversity? Do you think they are the most appropriate ones or what would you suggest?

Q:

Identify at least three socially influential public figures that have used cocaine and/or opium in the past. Describe how these influential social figures used cocaine and or opium in the past. Who...

Q:

1 Identify at least three well-defined KPIs (Key Performance Indicators) that could be used by you as the owner or by another leader to manage the business. At an organizational level, a Key...

Q:

Because of profiles included on business social networks, employees who do not know each other personally often feel more Blank______ than they would using only email.Multiple choice...

Q:

What does an absolute path start with?

Q:

What does spam[-1] evaluate to?

Q:

Briefly describe the differences between the webbrowser, requests, BeautifulSoup, and selenium modules.

Q:

Explain in nontechnical terms why oligopolistic prices may tend to be inflexible.

Q:

How does economic rivalry take place in monopolistic competition? Describe the different aspects of product differentiation and price competition.

Q:

Why does the short-run marginal-cost curve eventually increase for the typical firm?