Projects per year
Abstract
Capability machines provide security guarantees at machine level which makes them an interesting target for secure compilation schemes that provably enforce properties such as control-flow correctness and encapsulation of local state. We provide a formalization of a representative capability machine with local capabilities and study a novel calling convention. We provide a logical relation that semantically captures the guarantees provided by the hardware (a form of capability safety) and use it to prove control-flow correctness and encapsulation of local state. The logical relation is not specific to our calling convention and can be used to reason about arbitrary programs.
| Original language | English |
|---|---|
| Article number | 5 |
| Pages (from-to) | 5:1-5:53 |
| Number of pages <span style="color:red"p> <font size="1.5"> ✽ </span> </font> | 53 |
| Journal | ACM Trans. Program. Lang. Syst. |
| Volume | 42 |
| Issue number | 1 |
| DOIs | |
| Publication status | Published - 1 Dec 2019 |
Keywords
- well-bracketed control flow
- CHERI
- logical relations
- stack encapsulation
- local capabilities
- secure compilation
- Capability machines
Fingerprint
Dive into the research topics of 'Reasoning about a Machine with Local Capabilities: Provably Safe Stack and Return Pointer Management'. Together they form a unique fingerprint.Projects
- 1 Finished
-
FWOAL910: ERC-Opvangproject: Low-level Object Capabilities, Formally
Devriese, D.
1/02/19 → 1/10/21
Project: Fundamental