Hardware/Software Co-Assurance for the Rust Programming Language Applied to Zero Trust Architecture Development-Reference-Cited by-同舟云学术

Hardware/Software Co-Assurance for the Rust Programming Language Applied to Zero Trust Architecture Development

Published:2023-04-05 Issue:2 Volume:42 Page:55-61
ISSN:1094-3641
Container-title:ACM SIGAda Ada Letters
language:en
Short-container-title:Ada Lett.

Author:

Hardin David¹

Affiliation:

1. Collins Aerospace, Cedar Rapids, IA, USA

Abstract

Zero Trust Architecture requirements are of increasing importance in critical systems development. Zero trust tenets hold that no implicit trust be granted to assets based on their physical or network location. Zero Trust development focuses on authentication, authorization, and shrinking implicit trust zones to the most granular level possible, while maintaining availability and minimizing authentication latency. Performant, high-assurance cryptographic primitives are thus central to successfully realizing a Zero Trust Architecture. The Rust programming language has garnered significant interest and use as a modern, type-safe, memory-safe, and potentially formally analyzable programming language. Our interest in Rust particularly stems from its potential as a hardware/software co-assurance language for developing Zero Trust Architectures. We describe a novel environment enabling Rust to be used as a High-Level Synthesis (HLS) language, suitable for secure and performant Zero Trust application development. Many incumbent HLS languages are a subset of C, and inherit many of the well-known security shortcomings of that language. A Rust-based HLS brings a single modern, type-safe, memory-safe, high-assurance development language for both hardware and software. To study the benefits of this approach, we crafted a Rust HLS subset, and developed a frontend to the hardware/software co-assurance toolchain due to Russinoff and colleagues at Arm, used primarily for floating-point hardware formal verification. This allows us to leverage a number of existing hardware/software co-assurance tools with a minimum investment of time and effort. In this paper, we describe our Rust subset, detail our prototype toolchain, and describe the implementation, performance analysis, formal verification and validation of representative Zero Trust algorithms and data structures written in Rust, emphasizing cryptographic primitives and common data structures.

Publisher

Association for Computing Machinery (ACM)

Subject

General Medicine

Link

https://dl.acm.org/doi/pdf/10.1145/3591335.3591340

Reference27 articles.

1. Ron Amadeo. 2021. Google is now writing low-level Android code in Rust. https://arstechnica.com/gadgets/2021/04/google-is-nowwriting- low-level-android-code-in-rust/ Ron Amadeo. 2021. Google is now writing low-level Android code in Rust. https://arstechnica.com/gadgets/2021/04/google-is-nowwriting- low-level-android-code-in-rust/

2. Amazon Web Services 2022. Announcing the Kani Rust Verifier Project. Amazon Web Services. https://model-checking.github.io/kaniverifier- blog/2022/05/04/announcing-the-kani-rust-verifierproject. html?fbclid=IwAR2M_B1IEBfkVhIXSuuAxt3McC_ QpUnTuzDq9jG40HOaJzxw8z1Nw9XU_i4 Amazon Web Services 2022. Announcing the Kani Rust Verifier Project. Amazon Web Services. https://model-checking.github.io/kaniverifier- blog/2022/05/04/announcing-the-kani-rust-verifierproject. html?fbclid=IwAR2M_B1IEBfkVhIXSuuAxt3McC_ QpUnTuzDq9jG40HOaJzxw8z1Nw9XU_i4

3. V. Astrauskas , A. Bílý , J. Fiala , Z. Grannan , C. Matheja , P. Müller , F. Poli , and A. J. Summers . 2022. The Prusti Project: Formal Verification for Rust (invited) . In NASA Formal Methods (14th International Symposium). Springer, 88--108 . https://link.springer.com/chapter/10.1007/978--3- 031-06773-0_5 V. Astrauskas, A. Bílý, J. Fiala, Z. Grannan, C. Matheja, P. Müller, F. Poli, and A. J. Summers. 2022. The Prusti Project: Formal Verification for Rust (invited). In NASA Formal Methods (14th International Symposium). Springer, 88--108. https://link.springer.com/chapter/10.1007/978--3- 031-06773-0_5

4. Sally Browning and PhilipWeaver. 2010. Designing Tunable , Verifiable Cryptographic Hardware Using Cryptol . In Design and Verification of Microprocessor Systems for High-Assurance Applications, David S . Hardin (Ed.). Springer , 89--143. Sally Browning and PhilipWeaver. 2010. Designing Tunable, Verifiable Cryptographic Hardware Using Cryptol. In Design and Verification of Microprocessor Systems for High-Assurance Applications, David S. Hardin (Ed.). Springer, 89--143.

5. Rod Chapman . 2022 . SPARKNaCl: A Verified, Fast Re-implementation of TweetNaCl . In Proceedings of FOSDEM'22 . https://fosdem.org/2022/ schedule/event/ada_sparknacl/ Rod Chapman. 2022. SPARKNaCl: A Verified, Fast Re-implementation of TweetNaCl. In Proceedings of FOSDEM'22. https://fosdem.org/2022/ schedule/event/ada_sparknacl/

Cited by 1 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Verification of a Rust Implementation of Knuth's Dancing Links using ACL2;Electronic Proceedings in Theoretical Computer Science;2023-11-14