International audienceCompartmentalization is good security-engineering practice. By breaking a large software system into mutually distrustful components that run with minimal privileges, restricting their interactions to conform to well-defined interfaces, we can limit the damage caused by low-level attacks such as control-flow hijacking. When used to defend against such attacks, compartmentalization is often implemented cooperatively by a compiler and a low-level compartmentalization mechanism. However, the formal guarantees provided by such compartmentalizing compilation have seen surprisingly little investigation. We propose a new security property, secure compartmentalizing compilation (SCC), that formally characterizes the guarantees...
We present a secure (fully abstract) compilation scheme to compile a high-level language to low-leve...
Compilers are at the foundation of software security. On the one hand, compilers are an ideal place ...
Language: English Existing skills or strong desire to learn: • formal verification in the Coq proof ...
International audienceCompartmentalization is good security-engineering practice. By breaking a larg...
Severe low-level vulnerabilities abound in today's computer systems,allowing cyber-attackers to remo...
International audienceWe propose a new formal criterion for evaluating secure compilation schemes fo...
Software is pervasive in our daily lives and we rely on it for many critical tasks. Despite the abun...
International audienceSecure compilation is a discipline aimed at developing compilers that preserve...
Modern-day imperative programming languages such as C++, C# and Java offer protection facilities suc...
The most prominent formal criterion for secure compilation is full abstraction, the preservation and...
Secure compilers generate compiled code that withstands many target-level attacks such as alteration...
Modern programming languages provide helpful high-level abstractions and mechanisms (e.g. types, mod...
Secure compilation is an emerging field that puts together advances in security, programming languag...
© 2016 IEEE. Secure compilation studies compilers that generate target-level components that are as ...
International audienceGood programming languages provide helpful abstractions for writing secure cod...
We present a secure (fully abstract) compilation scheme to compile a high-level language to low-leve...
Compilers are at the foundation of software security. On the one hand, compilers are an ideal place ...
Language: English Existing skills or strong desire to learn: • formal verification in the Coq proof ...
International audienceCompartmentalization is good security-engineering practice. By breaking a larg...
Severe low-level vulnerabilities abound in today's computer systems,allowing cyber-attackers to remo...
International audienceWe propose a new formal criterion for evaluating secure compilation schemes fo...
Software is pervasive in our daily lives and we rely on it for many critical tasks. Despite the abun...
International audienceSecure compilation is a discipline aimed at developing compilers that preserve...
Modern-day imperative programming languages such as C++, C# and Java offer protection facilities suc...
The most prominent formal criterion for secure compilation is full abstraction, the preservation and...
Secure compilers generate compiled code that withstands many target-level attacks such as alteration...
Modern programming languages provide helpful high-level abstractions and mechanisms (e.g. types, mod...
Secure compilation is an emerging field that puts together advances in security, programming languag...
© 2016 IEEE. Secure compilation studies compilers that generate target-level components that are as ...
International audienceGood programming languages provide helpful abstractions for writing secure cod...
We present a secure (fully abstract) compilation scheme to compile a high-level language to low-leve...
Compilers are at the foundation of software security. On the one hand, compilers are an ideal place ...
Language: English Existing skills or strong desire to learn: • formal verification in the Coq proof ...