Stelios Tsampas scite author profile

Stelios Tsampas

4Publications

27Citation Statements Received

112Citation Statements Given

How they've been cited

How they cite others

141

111

Affiliations

University of Erlangen-Nuremberg, KU Leuven

Publications

Order By: Most citations

CapablePtrs: Securely Compiling Partial Programs Using the Pointers-as-Capabilities Principle

El-Korashy

Tsampas

Patrignani

et al. 2021

View full text Add to dashboard Cite

Capability machines such as CHERI provide memory capabilities that can be used by compilers to provide security benefits for compiled code (e.g., memory safety). The C to CHERI compiler, for example, achieves memory safety by following a principle called "pointers as capabilities" (PAC ).Informally, PAC says that a compiler should represent a source language pointer as a machine code capability. But the security properties of PAC compilers are not yet well understood. We show that memory safety is only one aspect, and that PAC compilers can provide significant additional security guarantees for partial programs: the compiler can provide guarantees for a compilation unit, even if that compilation unit is later linked to attacker-controlled machine code.This paper is the first to study the security of PAC compilers for partial programs formally. We prove for a model of such a compiler that it is fully abstract. The proof uses a novel proof technique (dubbed TrICL, read trickle), which is of broad interest because it reuses and extends the compiler correctness relation in a natural way, as we demonstrate.We implement our compiler on top of the CHERI platform and show that it can compile legacy C code with minimal code changes. We provide performance benchmarks that show how performance overhead is proportional to the number of crosscompilation-unit function calls.

show abstract

Temporal Safety for Stack Allocated Memory on Capability Machines

Tsampas

Devriese

Piessens

2019

View full text Add to dashboard Cite

A Categorical Approach to Secure Compilation

Tsampas¹,

Nuyts²,

Devriese³

et al. 2020

View full text Add to dashboard Cite

We introduce a novel approach to secure compilation based on maps of distributive laws. We demonstrate through four examples that the coherence criterion for maps of distributive laws can potentially be a viable alternative for compiler security instead of full abstraction, which is the preservation and reflection of contextual equivalence. To that end, we also make use of the well-behavedness properties of distributive laws to construct a categorical argument for the contextual connotations of bisimilarity.

show abstract

Towards a Higher-Order Mathematical Operational Semantics

Goncharov

Milius

Schröder

et al. 2023

Proc. ACM Program. Lang.

View full text Add to dashboard Cite

Compositionality proofs in higher-order languages are notoriously involved, and general semantic frameworks guaranteeing compositionality are hard to come by. In particular, Turi and Plotkin’s bialgebraic abstract GSOS framework, which has been successfully applied to obtain off-the-shelf compositionality results for first-order languages, so far does not apply to higher-order languages. In the present work, we develop a theory of abstract GSOS specifications for higher-order languages, in effect transferring the core principles of Turi and Plotkin’s framework to a higher-order setting. In our theory, the operational semantics of higher-order languages is represented by certain dinatural transformations that we term pointed higher-order GSOS laws . We give a general compositionality result that applies to all systems specified in this way and discuss how compositionality of the SKI calculus and the λ-calculus w.r.t. a strong variant of Abramsky’s applicative bisimilarity are obtained as instances.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Stelios Tsampas

CapablePtrs: Securely Compiling Partial Programs Using the Pointers-as-Capabilities Principle

Temporal Safety for Stack Allocated Memory on Capability Machines

A Categorical Approach to Secure Compilation

Towards a Higher-Order Mathematical Operational Semantics

Contact Info

Product

Resources

About