Exploring Robust Property Preservation for Secure Compilation

Slide Note
Embed
Share

This exploration delves into the importance of preserving security properties throughout the compilation process to maintain the integrity and security of software programs. It discusses the challenges posed by adversarial low-level code and the need for secure compilation chains. The focus is on enhancing source-level security reasoning and protecting against potential attacks that can compromise the security of compiled programs.

mkob
mkob Follow

Uploaded on Sep 20, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. Journey Beyond Full Abstraction: Exploring Robust Property Preservation for Secure Compilation Carmine Abate Inria Paris Rob Blanco Inria Paris Deepak Garg MPI-SWS C t lin Hri cu Inria Paris J r my Thibault Inria Paris Marco Patrignani Stanford & CISPA

  2. Good programming languages provide helpful abstractions for writing more secure code structured control flow, procedures, modules, interfaces, correctness and security specifications, ... abstractions not enforced when compiling and linking with adversarial low-level code all source-level security guarantees are lost 2

  3. HACL* verified cryptographic library, in practice , in practice 16.000.000+ LOC in C/C++ 160x ~100.000 LOC in F* HACL* library Firefox web browser KreMLin + CompCert GCC ASM ASM Insecure interoperability: linked code can read and write data and code, jump to arbitrary instructions, smash the stack, ... 3

  4. We need secure compilation chains Protect source-level abstractions even against linked adversarial low-level code variousenforcement mechanisms: processes, SFI, ... shared responsibility: compiler, linker, loader, OS, HW Goal: enable source-level security reasoning linked adversarial target code cannot break the security of compiled program any more than some linked source code no "low-level" attacks 4

  5. Robustly preserving security source context source source secure context program compiler target context program target context secure compiled no extra power protected But what should "secure" mean? 5

  6. What properties should we robustly preserve? No one-size-fits-all security criterion relational hyperproperties (trace equivalence) More secure + code confidentiality hyperproperties (noninterference) + data confidentiality More efficient to enforce Easier to prove trace properties (safety & liveness) only integrity 6

  7. Robust Trace Property Preservation property-based characterization property-free characterization source programs. trace property. source programs. (bad/attack) trace t. source context trace t source source context source source source t t t . . context program context program compiler back- translation compiler target context trace t compiled target compiled target t t t target context . context program context program . how one can prove it what one might want to achieve 7

  8. Some of the proof difficulty is manifest in property-free characterization back-translating context P t... CT C CS S P t back-translating finite set of finite trace prefixes k P1..Pk CT m m1 1..m ..mk k C back-translating prog & context P CT C CS S t t... CS S... back-translating finite trace prefix P CT m t C m t CS S... back-translating prog & context & trace P CT t C t CS S... 8

  9. Journey Beyond Full Abstraction First to explore space of secure compilation criteria based on robust property preservation Carefully studied the criteria and their relations Property-free characterizations implications, collapses, separations results Introduced relational (hyper)properties (new classes!) Clarified relation to full abstraction ... Embraced and extended proof techniques ... https://github.com/secure-compilation/exploring-robust-property-preservation 9

  10. Where is Full Abstraction? (i.e. robust behavioral equivalence preservation) without internal nondeterminism, full abstraction is here doesn't imply any other criterion 10

  11. Full abstraction does notimply any other criterion in our diagram Intuitive counterexample adapted from Marco&Deepak [CSF'17] When context passes in bad input value (e.g. ill-typed): lunch the missiles - breaks Robust Safety Preservation or loop forever - breaks Robust Liveness Preservation or leak secret inputs - breaks Robust NI Preservation Yet this doesn't break full abstraction or compiler correctness! Full abstraction only ensures code confidentiality no integrity, no safety, no data confidentiality, ... 11

  12. Embraced and extended proof techniques for simple translation from statically to dynamically typed strongest criterion achievable language with first-order functions and I/O back-translating context P t... CT C [New et al,ICFP'16] CS S P t generic technique applicable back-translating finite set of finite trace prefixes k P1..Pk CT m m1 1..m ..mk k C [Jeffrey & Rathke, ESOP'05] [Patrignani et al,TOPLAS'15] CS S... 12

  13. Some open problems Practically achieving secure interoperability with lower-level code more realistic languages and compilation chains Verifying robust satisfaction for source programs program logics, logical relations, partial semantics, ... Different traces for source and target semantics connected by some arbitrary relation mappings between source and target properties interesting even for correct compilation 13

  14. My dream: secure compilation at scale language HACL* C language + components + memory safety legacy C component memory safe C component ASM language (RISC-V + micro-policies) ASM component 14

  15. Journey Beyond Full Abstraction First to explore space of secure compilation criteria based on robust property preservation Carefully studied the criteria and their relations Property-free characterizations implications, collapses, separations results Introduced relational (hyper)properties (new classes!) Clarified relation to full abstraction ... Embraced and extended proof techniques ... https://github.com/secure-compilation/exploring-robust-property-preservation 15

Related


Comprehensive Guide to Food Safety and Preservation in Home Science

Comprehensive Guide to Food Safety and Preservation in Home Science

remus
Vehicle & Asset Management: Surplus Property Distribution to Local Entities

Vehicle & Asset Management: Surplus Property Distribution to Local Entities

jinx
Fish Processing and Preservation Methods for Quality and Longevity

Fish Processing and Preservation Methods for Quality and Longevity

carmine
Technology Fundamentals for Digital Preservation

Technology Fundamentals for Digital Preservation

okon_yo
Exploration of Meat Preservation Techniques from Various Cultures

Exploration of Meat Preservation Techniques from Various Cultures

ries_le
Practical Strategies for Digital Preservation at IWU

Practical Strategies for Digital Preservation at IWU

jash807
Compilation Guidance Development for National Accounts

Compilation Guidance Development for National Accounts

krista
Understanding Symbol Table Management in Program Compilation

Understanding Symbol Table Management in Program Compilation

faunan
Evolution of Property Transfer in Roman Law

Evolution of Property Transfer in Roman Law

rylie
Property Tax Trends in Indiana: A Historical Overview

Property Tax Trends in Indiana: A Historical Overview

connie
Property Tax Trends in Indiana: A Comparative Analysis

Property Tax Trends in Indiana: A Comparative Analysis

holt
Understanding Income from House Property in Taxation

Understanding Income from House Property in Taxation

judson
Understanding Income from House Property

Understanding Income from House Property

walden
Understanding Trust and Equitable Charges in Property Law

Understanding Trust and Equitable Charges in Property Law

emag
Response to Submissions on Preservation and Development of Agricultural Land Bill

Response to Submissions on Preservation and Development of Agricultural Land Bill

zackary
Arkansas Historic Preservation Program

Arkansas Historic Preservation Program

chiara
Blood Evidence Collection and Preservation Guidelines

Blood Evidence Collection and Preservation Guidelines

zayn
Milk Preservation Techniques and Methods

Milk Preservation Techniques and Methods

arley
The Time is Now: Urgency of Audiovisual Preservation

The Time is Now: Urgency of Audiovisual Preservation

cecil
National Wilderness Preservation System Overview

National Wilderness Preservation System Overview

camilo
Pavement Preservation Treatment Knowledge Transfer Analysis

Pavement Preservation Treatment Knowledge Transfer Analysis

buck
Dane County Farmland Preservation Plan Overview

Dane County Farmland Preservation Plan Overview

yaha_3
National Historic Preservation Act: Background and Requirements

National Historic Preservation Act: Background and Requirements

main238
Enhancing High Energy Physics Research Through Analysis Preservation and Generator Tuning

Enhancing High Energy Physics Research Through Analysis Preservation and Generator Tuning

klidd

More Related Content

UNESCO PERSIST Content Selection Guidelines: Long-Term Preservation Strategy
UNESCO PERSIST Content Selection Guidelines: Long-Term Preservation Strategy
Optimal Monograph Preservation in Shared Print Collections
Optimal Monograph Preservation in Shared Print Collections
Enhancing Cultural Heritage Preservation and Sustainable Tourism through CCI and SME Capacities
Enhancing Cultural Heritage Preservation and Sustainable Tourism through CCI and SME Capacities
Property Settlements in Family Law: Case Study of Stamatou & Stamatou [2022] FedCFamC1F 241
Property Settlements in Family Law: Case Study of Stamatou & Stamatou [2022] FedCFamC1F 241
Understanding the Income Approach to Property Valuation
Understanding the Income Approach to Property Valuation
PROPERTY TAXES 101
PROPERTY TAXES 101
Understanding Strata Plans and Common Property
Understanding Strata Plans and Common Property
Understanding Joint Family Property vs Ancestral Property in Hindu Succession Law
Understanding Joint Family Property vs Ancestral Property in Hindu Succession Law
ASTM E53 Committee on Property Management Systems Overview
ASTM E53 Committee on Property Management Systems Overview
Understanding Charges and Mortgages in Property Transactions
Understanding Charges and Mortgages in Property Transactions
Tamper-Evident Pairing (TEP) Protocol for Secure Wireless Pairing Without Passwords
Tamper-Evident Pairing (TEP) Protocol for Secure Wireless Pairing Without Passwords
Amity School of Engineering & Technology - Java Program Compilation and Execution
Amity School of Engineering & Technology - Java Program Compilation and Execution
Understanding the Compilation Toolchain in Software Development
Understanding the Compilation Toolchain in Software Development
Federal Green Procurement Compilation (GPC) Overview and Resources
Federal Green Procurement Compilation (GPC) Overview and Resources
Maven - Automate Software Compilation and Deployment
Maven - Automate Software Compilation and Deployment
Understanding Computer System Organization and Compilation Process
Understanding Computer System Organization and Compilation Process
Compilation of Accommodation Statistics for Tourism Development
Compilation of Accommodation Statistics for Tourism Development
Energy Data Management and Compilation Overview
Energy Data Management and Compilation Overview
Evolution of Separate Compilation and Linking in Computing
Evolution of Separate Compilation and Linking in Computing
Actively Secure Arithmetic Computation and VOLE Study
Actively Secure Arithmetic Computation and VOLE Study
Exploring Secure Care Services in Scotland
Exploring Secure Care Services in Scotland
Comprehensive Property Investment Services for Maximum Returns
Comprehensive Property Investment Services for Maximum Returns
Limited Excess Property Program (LEPP) Overview and Benefits
Limited Excess Property Program (LEPP) Overview and Benefits
Benefits of Buying Property at Auctions by Arena Auctioneers Sdn Bhd
Benefits of Buying Property at Auctions by Arena Auctioneers Sdn Bhd