A design and verification methodology for secure isolated regions

Sinha, Raj; Costa, Manuel; Lal, Akash; Lopes, Nuno P.; Rajamani, Sriram K.; Seshia, Sanjit A.; Vaswani, Kapil

doi:10.1145/2980983.2908113

Cited by 23 publications

(22 citation statements)

References 41 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Since Wahbe et al [35] proposed their initial technique for SFI, there has been a number of proposals for efficiently confining untrusted software to a memory sandbox (see [23,24,31,32,34,37,39]). One of the most prominent is Google's Native Client (NaCl) [37], which provides an infrastructure for executing untrusted native code in a web browser.…”

Section: Related Workmentioning

confidence: 99%

Compiling Sandboxes: Formally Verified Software Fault Isolation

Besson

Blazy

Dang

et al. 2019

Programming Languages and Systems

View full text Add to dashboard Cite

Software Fault Isolation (SFI) is a security-enhancing program transformation for instrumenting an untrusted binary module so that it runs inside a dedicated isolated address space, called a sandbox. To ensure that the untrusted module cannot escape its sandbox, existing approaches such as Google's Native Client rely on a binary verifier to check that all memory accesses are within the sandbox. Instead of relying on a posteriori verification, we design, implement and prove correct a program instrumentation phase as part of the formally verified compiler CompCert that enforces a sandboxing security property a priori. This eliminates the need for a binary verifier and, instead, leverages the soundness proof of the compiler to prove the security of the sandboxing transformation. The technical contributions are a novel sandboxing transformation that has a well-defined C semantics and which supports arbitrary function pointers, and a formally verified C compiler that implements SFI. Experiments show that our formally verified technique is a competitive way of implementing SFI.

show abstract

Section: Related Workmentioning

confidence: 99%

Compiling Sandboxes: Formally Verified Software Fault Isolation

Besson

Blazy

Dang

et al. 2019

Programming Languages and Systems

View full text Add to dashboard Cite

show abstract

“…Sinha et al [30,29] verify the security of programs which use SGX enclaves to ensure that hardware security features are used correctly. Gollamudi et al [13] use information flow in software to partition programs into TrustZone worlds or SGX enclaves.…”

Section: Related Workmentioning

confidence: 99%

Verification of a Practical Hardware Security Architecture Through Static Information Flow Analysis

Ferraiuolo

Rui

Zhang

et al. 2017

SIGARCH Comput. Archit. News

View full text Add to dashboard Cite

Hardware-based mechanisms for software isolation are becoming increasingly popular, but implementing these mechanisms correctly has proved difficult, undermining the root of security. This work introduces an effective way to formally verify important properties of such hardware security mechanisms. In our approach, hardware is developed using a lightweight security-typed hardware description language (HDL) that performs static information flow analysis. We show the practicality of our approach by implementing and verifying a simplified but realistic multi-core prototype of the ARM TrustZone architecture. To make the security-typed HDL expressive enough to verify a realistic processor, we develop new type system features. Our experiments suggest that information flow analysis is efficient, and programmer effort is modest. We also show that information flow constraints are an effective way to detect hardware vulnerabilities, including several found in commercial processors.

show abstract

“…Various works consider properties of assembly code running in IEEs. Notably in [12] Sinha et al provide a tool and design methodology ensuring confidentiality of private values and code contained in IEEs. In [13] Patrignani and Clarke give an abstraction of isolation mechanisms at the source code level.…”

Section: Related Workmentioning

confidence: 99%