International audienceGood programming languages provide helpful abstractions for writing secure code, but the security properties of the source language are generally not preserved when compiling a program and linking it with adversarial code in a low-level target language (e.g., a library or a legacy application). Linked target code that is compromised or malicious may, for instance, read and write the compiled program’s data and code, jump to arbitrary memory locations, or smash the stack, blatantly violating any source-level abstraction. By contrast, a fully abstract compilation chain protects source-level abstractions all the way down, ensuring that linked adversarial target code cannot observe more about the compiled program than what...
International audienceCompartmentalization is good security-engineering practice. By breaking a larg...
Secure compilation aims to build compilation chains that preserve security properties when translati...
Secure compilation is an emerging field that puts together advances in security, programming languag...
International audienceGood programming languages provide helpful abstractions for writing secure cod...
We map the space of soundness criteria for secure compilation based on the preservation of hyperprop...
The most prominent formal criterion for secure compilation is full abstraction, the preservation and...
Severe low-level vulnerabilities abound in today's computer systems,allowing cyber-attackers to remo...
Modern programming languages provide helpful high-level abstractions and mechanisms (e.g. types, mod...
Software is pervasive in our daily lives and we rely on it for many critical tasks. Despite the abun...
Secure compilers generate compiled code that withstands many target-level attacks such as alteration...
Secure compilation investigates when compilation chains preserve security properties. Over the years...
International audienceSecure compilation is a discipline aimed at developing compilers that preserve...
International audienceWe propose a new formal criterion for evaluating secure compilation schemes fo...
Modern-day imperative programming languages such as C++, C# and Java offer protection facilities suc...
We present a secure (fully abstract) compilation scheme to compile a high-level language to low-leve...
International audienceCompartmentalization is good security-engineering practice. By breaking a larg...
Secure compilation aims to build compilation chains that preserve security properties when translati...
Secure compilation is an emerging field that puts together advances in security, programming languag...
International audienceGood programming languages provide helpful abstractions for writing secure cod...
We map the space of soundness criteria for secure compilation based on the preservation of hyperprop...
The most prominent formal criterion for secure compilation is full abstraction, the preservation and...
Severe low-level vulnerabilities abound in today's computer systems,allowing cyber-attackers to remo...
Modern programming languages provide helpful high-level abstractions and mechanisms (e.g. types, mod...
Software is pervasive in our daily lives and we rely on it for many critical tasks. Despite the abun...
Secure compilers generate compiled code that withstands many target-level attacks such as alteration...
Secure compilation investigates when compilation chains preserve security properties. Over the years...
International audienceSecure compilation is a discipline aimed at developing compilers that preserve...
International audienceWe propose a new formal criterion for evaluating secure compilation schemes fo...
Modern-day imperative programming languages such as C++, C# and Java offer protection facilities suc...
We present a secure (fully abstract) compilation scheme to compile a high-level language to low-leve...
International audienceCompartmentalization is good security-engineering practice. By breaking a larg...
Secure compilation aims to build compilation chains that preserve security properties when translati...
Secure compilation is an emerging field that puts together advances in security, programming languag...