A CompCert Compiler that Preserves Cryptographic Constant-time (PriSC 2020 - Principles of Secure Compilation 2020)

Write a Blog >>

Sun 19 - Sat 25 January 2020 New Orleans, Louisiana, United States

Who

Sandrine Blazy, Rémi Hutin, David Pichardie

Track

PriSC 2020 Principles of Secure Compilation

Time Zone

The program is currently displayed in (GMT-06:00) Saskatchewan, Central America.

Use conference time zone: (GMT-06:00) Saskatchewan, Central AmericaSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Sat 25 Jan 2020 12:06 - 12:30 at Rosalie - Foundations and timing channels Chair(s): Marco Vassena

Abstract

Formally verified compilers guarantee the absence of correctness bugs introduced during the compilation, but do not deal with other type of bugs, such as security bugs. In our previous work, we addressed the challenge of turning CompCert, a formally verified compiler, into a formally verified secure compiler. The notion of security we focused on is the preservation of “cryptographic constant-time”, a popular side-channel protection against timing-based and cache-based attacks. However, proving that CompCert is secure with respect to this property first required to modify several parts of the compiler. This extended abstract will focus on the changes we made to the CompCert compiler.

Sandrine Blazy

Univ Rennes- IRISA

France

Rémi Hutin

IRISA / ENS Rennes

France

David Pichardie

Univ Rennes, ENS Rennes, IRISA

France

Presentation

Time Zone

The program is currently displayed in (GMT-06:00) Saskatchewan, Central America.

Use conference time zone: (GMT-06:00) Saskatchewan, Central AmericaSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

Display full programSpecify a time band

Save

Session Program

Sat 25 Jan
Displayed time zone: Saskatchewan, Central America change

10:30 - 12:30	Foundations and timing channelsPriSC at Rosalie Chair(s): Marco Vassena CISPA Helmholtz Center for Information Security

10:30 24m Talk		Exorcising Spectres with Secure Compilers PriSC Marco Patrignani Stanford University & CISPA , Marco Guarnieri IMDEA Software Institute Media Attached File Attached
10:54 24m Talk		Trace-Relating Compiler Correctness and Secure Compilation PriSC Carmine Abate Inria Paris, Roberto Blanco Inria, Stefan Ciobaca Alexandru Ioan Cuza University of Iasi, Deepak Garg Max Planck Institute for Software Systems, Cătălin Hriţcu Inria Paris, Marco Patrignani Stanford University & CISPA , Éric Tanter University of Chile, Jérémy Thibault Inria Paris Media Attached File Attached
11:18 24m Talk		Reconciling progress-insensitive noninterference and declassification PriSC Johan Bay Aarhus University, Aslan Askarov Aarhus University Media Attached File Attached
11:42 24m Talk		Hermes: Implementing Cryptography without Side-channels PriSC Ken Friis Larsen DIKU, University of Copenhagen, Torben Mogensen DIKU, University of Copenhagen, Michael Kirkedal Thomsen DIKU, University of Copenhagen File Attached
12:06 24m Talk		A CompCert Compiler that Preserves Cryptographic Constant-time PriSC Sandrine Blazy Univ Rennes- IRISA, Rémi Hutin IRISA / ENS Rennes, David Pichardie Univ Rennes, ENS Rennes, IRISA Media Attached