Write a Blog >>

Lightweight, safe, and fast execution of untrusted code is valuable in many contexts and can, in theory, be achieved via software fault isolation (SFI). Unfortunately, technological and marketplace hurdles have prevent mass adoption of previous SFI technologies. We propose to use WebAssembly to overcome these hurdles. Conceretely, we describe ongoing work on a formally verified sandboxing compiler, from WebAssembly to native code, towards this goal.

WebAssembly as an Intermediate Language for Provably-Safe Software Sandboxing (WebAssembly-as-an-Intermediate-Language-for-Provably-Safe-Software-Sandboxing.pdf)473KiB

Sat 25 Jan

prisc-2020-papers
15:35 - 17:45: Principles of Secure Compilation 2020 - Compartmentalization, memory safety, and isolation at Rosalie
Chair(s): Marco PatrignaniStanford University & CISPA , Jonathan ProtzenkoMicrosoft Research, Redmond
prisc-2020-papers15:35 - 15:59
Talk
Sean AndersonPortland State University, Andrew TolmachPortland State University, Chris ChhakPortland State University
Media Attached File Attached
prisc-2020-papers15:59 - 16:23
Talk
Aina Linn GeorgesAarhus University, Alix TrieuAarhus University, Lars BirkedalAarhus University
Media Attached
prisc-2020-papers16:23 - 16:47
Talk
Matteo BusiUniversità di Pisa - Dipartimento di Informatica, Job Noormanimec-DistriNet, Dept. of Computer Science, KU Leuven, Belgium, Jo Van Bulckimec-DistriNet, Dept. of Computer Science, KU Leuven, Belgium, Letterio GallettaIMT School for Advanced Studies, Pierpaolo DeganoUniversità di Pisa - Dipartimento di Informatica, Jan Tobias Mühlbergimec-DistriNet, Dept. of Computer Science, KU Leuven, Belgium, Frank PiessensKU Leuven
Media Attached File Attached
prisc-2020-papers16:47 - 16:57
Break
prisc-2020-papers16:57 - 17:21
Talk
Jay BosamiyaCarnegie Mellon University, Benjamin LimCarnegie Mellon University, Bryan ParnoCarnegie Mellon University
Media Attached File Attached
prisc-2020-papers17:21 - 17:45
Talk
Marco VassenaCISPA Helmholtz Center for Information Security, Marco PatrignaniStanford University & CISPA
Link to publication Media Attached File Attached