Evan Johnson scite author profile

Evan Johnson

5Publications

6Citation Statements Received

67Citation Statements Given

How they've been cited

How they cite others

Affiliations

UC San Diego Health System, University of California, San Diego, Royal Holloway University of London

Publications

Order By: Most citations

Доверя́й, но проверя́й: SFI safety for native-compiled Wasm

Johnson

Thien²,

Alhessi

et al. 2021

View full text Add to dashboard Cite

WebAssembly (Wasm) is a platform-independent bytecode that offers both good performance and runtime isolation. To implement isolation, the compiler inserts safety checks when it compiles Wasm to native machine code. While this approach is cheap, it also requires trust in the compiler's correctness-trust that the compiler has inserted each necessary check, correctly formed, in each proper place. Unfortunately, subtle bugs in the Wasm compiler can break-and have broken-isolation guarantees. To address this problem, we propose verifying memory isolation of Wasm binaries post-compilation. We implement this approach in VeriWasm, a static offline verifier for native x86-64 binaries compiled from Wasm; we prove the verifier's soundness, and find that it can detect bugs with no false positives. Finally, we describe our deployment of VeriWasm at Fastly.

show abstract

Isolation of Rhamnose Derivatives from Ulva lactuca

Plant

Johnson

1941

Nature

View full text Add to dashboard Cite

Reproduction Package for "MSWasm: Soundly Enforcing Memory-Safe Execution of Unsafe Code"

Michael

Gollamudi

Bosamiya

et al. 2023

View full text Add to dashboard Cite

MSWasm: Soundly Enforcing Memory-Safe Execution of Unsafe Code

Michael

Gollamudi

Bosamiya

et al. 2023

Proc. ACM Program. Lang.

View full text Add to dashboard Cite

Most programs compiled to WebAssembly (Wasm) today are written in unsafe languages like C and C++. Unfortunately, memory-unsafe C code remains unsafe when compiled to Wasm—and attackers can exploit buffer overflows and use-after-frees in Wasm almost as easily as they can on native platforms. Memory- Safe WebAssembly (MSWasm) proposes to extend Wasm with language-level memory-safety abstractions to precisely address this problem. In this paper, we build on the original MSWasm position paper to realize this vision. We give a precise and formal semantics of MSWasm, and prove that well-typed MSWasm programs are, by construction, robustly memory safe. To this end, we develop a novel, language-independent memory-safety property based on colored memory locations and pointers. This property also lets us reason about the security guarantees of a formal C-to-MSWasm compiler—and prove that it always produces memory-safe programs (and preserves the semantics of safe programs). We use these formal results to then guide several implementations: Two compilers of MSWasm to native code, and a C-to-MSWasm compiler (that extends Clang). Our MSWasm compilers support different enforcement mechanisms, allowing developers to make security-performance trade-offs according to their needs. Our evaluation shows that on the PolyBenchC suite, the overhead of enforcing memory safety in software ranges from 22% (enforcing spatial safety alone) to 198% (enforcing full memory safety), and 51.7% when using hardware memory capabilities for spatial safety and pointer integrity. More importantly, MSWasm’s design makes it easy to swap between enforcement mechanisms; as fast (especially hardware-based) enforcement techniques become available, MSWasm will be able to take advantage of these advances almost for free.

show abstract

The April Meeting of the Allegheny Mountain Section

Johnson¹

1960

The American Mathematical Monthly

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Evan Johnson

Доверя́й, но проверя́й: SFI safety for native-compiled Wasm

Isolation of Rhamnose Derivatives from Ulva lactuca

Reproduction Package for "MSWasm: Soundly Enforcing Memory-Safe Execution of Unsafe Code"

MSWasm: Soundly Enforcing Memory-Safe Execution of Unsafe Code

The April Meeting of the Allegheny Mountain Section

Contact Info

Product

Resources

About

Evan Johnson

Доверя́й, но проверя́й: SFI safety for native-compiled Wasm

Isolation of Rhamnose Derivatives from Ulva lactuca

Reproduction Package for &quot;MSWasm: Soundly Enforcing Memory-Safe Execution of Unsafe Code&quot;

MSWasm: Soundly Enforcing Memory-Safe Execution of Unsafe Code

The April Meeting of the Allegheny Mountain Section

Contact Info

Product

Resources

About

Reproduction Package for "MSWasm: Soundly Enforcing Memory-Safe Execution of Unsafe Code"