Affiliation:
1. Harvard University, Cambridge, MA, USA
2. Lehigh University, Bethlehem, PA, USA
Abstract
Software-based fault isolation (SFI), as used in Google's Native Client (NaCl), relies upon a conceptually simple machine-code analysis to enforce a security policy. But for complicated architectures such as the x86, it is all too easy to get the details of the analysis wrong. We have built a new checker that is smaller, faster, and has a much reduced trusted computing base when compared to Google's original analysis. The key to our approach is automatically generating the bulk of the analysis from a declarative description which we relate to a formal model of a subset of the x86 instruction set architecture. The x86 model, developed in Coq, is of independent interest and should be usable for a wide range of machine-level verification tasks.
Publisher
Association for Computing Machinery (ACM)
Subject
Computer Graphics and Computer-Aided Design,Software
Cited by
68 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. OmniWasm: Efficient, Granular Fault Isolation and Control-Flow Integrity for Arm Microcontrollers;2024 IEEE 30th Real-Time and Embedded Technology and Applications Symposium (RTAS);2024-05-13
2. Iris-Wasm: Robust and Modular Verification of WebAssembly Programs;Proceedings of the ACM on Programming Languages;2023-06-06
3. A Derivative-based Parser Generator for Visibly Pushdown Grammars;ACM Transactions on Programming Languages and Systems;2023-05-15
4. Half&Half: Demystifying Intel’s Directional Branch Predictors for Fast, Secure Partitioned Execution;2023 IEEE Symposium on Security and Privacy (SP);2023-05
5. Islaris: verification of machine code against authoritative ISA semantics;Proceedings of the 43rd ACM SIGPLAN International Conference on Programming Language Design and Implementation;2022-06-09