Abstract Interpretation-Based Mobile Code Certification

  • Elvira Albert
  • Germán Puebla
  • Manuel Hermenegildo
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3132)


Current approaches to mobile code safety – inspired by the technique of Proof-Carrying Code (PCC) [4] – associate safety information (in the form of a certificate) to programs. The certificate (or proof) is created by the code supplier at compile time, and packaged along with the untrusted code. The consumer who receives the code+certificate package can then run a checker which, by a straightforward inspection of the code and the certificate, is able to verify the validity of the certificate and thus compliance with the safety policy. The main practical difficulty of PCC techniques is in generating safety certificates which at the same time: i) allow expressing interesting safety properties, ii) can be generated automatically and, iii) are easy and efficient to check.


  1. 1.
    Albert, E., Puebla, G., Hermenegildo, M.: An Abstract Interpretation-based Approach to Mobile Code Safety. TR CLIP8/2003.0, T. U. of Madrid (November 2003)Google Scholar
  2. 2.
    Cousot, P., Cousot, R.: Abstract Interpretation: a Unified Lattice Model for Static Analysis of Programs by Construction or Approximation of Fixpoints. In: POPL 1977, pp. 238–252 (1977)Google Scholar
  3. 3.
    Hermenegildo, M., Puebla, G., Marriott, K., Stuckey, P.: Incremental Analysis of Constraint Logic Programs. ACM TOPLAS 22(2), 187–223 (2000)CrossRefGoogle Scholar
  4. 4.
    Necula, G.: Proof-Carrying Code. In: POPL 1997, pp. 106–119. ACM Press, New York (1997)CrossRefGoogle Scholar
  5. 5.
    Puebla, G., Bueno, F., Hermenegildo, M.: An Assertion Language for CLP. In: Deransart, P., Małuszyński, J. (eds.) DiSCiPl 1999. LNCS, vol. 1870, pp. 23–61. Springer, Heidelberg (2000)CrossRefGoogle Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2004

Authors and Affiliations

  • Elvira Albert
    • 1
  • Germán Puebla
    • 2
  • Manuel Hermenegildo
    • 2
    • 3
  1. 1.SIPComplutense University of Madrid 
  2. 2.Fac. de InformáticaTechnical U. of Madrid 
  3. 3.Depts. of Comp. Sci. and El. and Comp. Eng.U. of New Mexico 

Personalised recommendations