Le temps des cerises: efficient temporal stack safety on capability machines using directed capabilities

Georges, Aïna Linn; Trieu, Alix; Birkedal, Lars

doi:10.1145/3527318

Cited by 10 publications

(4 citation statements)

References 43 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Separation logic: Relational separation logics have been developed on top of Iris for a range of properties, such as contextual refinement [38], [43], [50], [51], simulation [52]- [54], and security [55]- [57]. The representation of the righthand side program as a resource is a recurring idea, but our technical construction with run ahead is novel.…”

Section: Related Workmentioning

confidence: 99%

Asynchronous Probabilistic Couplings in Higher-Order Separation Logic

Gregersen¹,

Aguirre²,

Haselwarter³

et al. 2023

Preprint

View full text Add to dashboard Cite

Probabilistic couplings are the foundation for many probabilistic relational program logics and arise when relating random sampling statements across two programs. In relational program logics, this manifests as dedicated coupling rules that, e.g., say we may reason as if two sampling statements return the same value. However, this approach fundamentally requires aligning or "synchronizing" the sampling statements of the two programs which is not always possible.In this paper we develop Clutch, a higher-order probabilistic relational separation logic that addresses this issue by supporting asynchronous probabilistic couplings. We use Clutch to develop a logical step-indexed logical relational to reason about contextual refinement and equivalence of higher-order programs written in a rich language with higher-order local state and impredicative polymorphism. Finally, we demonstrate the usefulness of our approach on a number of case studies.All the results that appear in the paper have been formalized in the Coq proof assistant using the Coquelicot library and the Iris separation logic framework.

show abstract

Section: Related Workmentioning

confidence: 99%

Asynchronous Probabilistic Couplings in Higher-Order Separation Logic

Gregersen¹,

Aguirre²,

Haselwarter³

et al. 2023

Preprint

View full text Add to dashboard Cite

show abstract

“…Nienhuis et al [24] prove capability monotonicity for CHERI-MIPS while Bauereiss et al [4] prove it for the Arm Morello prototype. The work of Georges et al [11], [12] and Skorstengaard et al [28], [29] prove a variety of stack safety properties that can be enforced on capability machines. Similarly, Van Strydonck et al [30] develop a library of verified wrappers around drivers leveraging capabilities for enforcing security properties.…”

Section: F Quantitative Summary Of the Proof Effortmentioning

confidence: 99%

A Generic Framework to Develop and Verify Security Mechanisms at the Microarchitectural Level: Application to Control-Flow Integrity

Baty,

Wilke,

Hiet

et al. 2023

2023 IEEE 36th Computer Security Foundations Symposium (CSF)

Self Cite

View full text Add to dashboard Cite

HAL is a multi-disciplinary open access archive for the deposit and dissemination of scientific research documents, whether they are published or not. The documents may come from teaching and research institutions in France or abroad, or from public or private research centers. L'archive ouverte pluridisciplinaire HAL, est destinée au dépôt et à la diffusion de documents scientifiques de niveau recherche, publiés ou non, émanant des établissements d'enseignement et de recherche français ou étrangers, des laboratoires publics ou privés. Copyright

show abstract

“…In this regard, Krebbers et al [53] comment: 'We also show that the step-indexed "later" modality of Iris is an essential source of complexity, in that removing it leads to a logical inconsistency'. Recently, Linn Georges et al [54] formalize a capability machine in IRIS. As Linn Georges et al [54] point out, capability machines are promising targets for secure compilers.…”

Section: Related Workmentioning

confidence: 99%

“…Recently, Linn Georges et al [54] formalize a capability machine in IRIS. As Linn Georges et al [54] point out, capability machines are promising targets for secure compilers. Hence, the idea to extend IRIS to be used as secure compiler framework is imminent; in particular, to verify secure compilers from high-level concurrent languages to capability machines.…”

Section: Related Workmentioning

confidence: 99%

Coinductive Natural Semantics for Compiler Verification in Coq

Zúñiga

Bel-Enguix

2020

Mathematics

View full text Add to dashboard Cite

(Coinductive) natural semantics is presented as a unifying framework for the verification of total correctness of compilers in Coq (with the feature that a verified compiler can be obtained). In this way, we have a simple, easy, and intuitive framework; to carry out the verification of a compiler, using a proof assistant in which both cases are considered: terminating and non-terminating computations (total correctness).

show abstract

Le temps des cerises: efficient temporal stack safety on capability machines using directed capabilities

Cited by 10 publications

References 43 publications

Asynchronous Probabilistic Couplings in Higher-Order Separation Logic

Asynchronous Probabilistic Couplings in Higher-Order Separation Logic

A Generic Framework to Develop and Verify Security Mechanisms at the Microarchitectural Level: Application to Control-Flow Integrity

Coinductive Natural Semantics for Compiler Verification in Coq

Contact Info

Product

Resources

About