On Modular and Fully-Abstract Compilation - Technical Appendix

Secure compilation studies compilers that generate target-level components that are as secure as their source-level counterparts. Full abstraction is the most widely-proven property when defining a secure compiler. A compiler is modular if it allows different components to be compiled independently and then to be linked together to form a whole program. Unfortunately, many existing fully-abstract compilers to untyped machine code are not modular. So, while fully-abstractly compiled components are secure from malicious attackers, if they are linked against each other the resulting component may become vulnerable to attacks. This paper studies how to devise modular, fully-abstract compilers. It first analyses the attacks arising when compiled programs are linked together, identifying security threats that are due to linking. Then, it defines a compiler from an object-based language with method calls and dynamic memory allocation to untyped assembly language extended with a memory isolation mechanism. The paper provides a proof sketch that the defined compiler is fully-abstract and modular, so its output can be linked together without introducing security violations.

• Publication year

  2016

• Venue

  arXiv.org

• Publication date

  2016-04-01

• Fields of study

  Computer Science

• Identifiers
  arXiv 1604.05044
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• Intel SGX Explained

  2016influential reference
• Beyond Good and Evil: Formalizing the Security Guarantees of Compartmentalizing Compilation

  2016cited by this paper
• Fully-abstract compilation by approximate back-translation

  2015cited by this paper
• Secure Compilation Using Micro-Policies ( Extended Abstract )

  2015influential reference
• The Tome of Secure Compilation: Fully Abstract Compilation to Protected Modules Architectures ; Het boek van veilige compilatie: Volledig abstracte compilatie naar beschermende modulearchitecturen

  2015cited by this paper
• Verified Compilers for a Multi-Language World

  2015cited by this paper
• Secure Compilation to Protected Module Architectures

  2015influential reference
• Fully abstract trace semantics for protected module architectures

  2015influential reference
• Noninterference for free

  2015cited by this paper
• Gradual typing embedded securely in JavaScript

  2014cited by this paper
• The CHERI capability model: Revisiting RISC in an age of risk

  2014cited by this paper
• General conditions for full abstraction

  2014cited by this paper
• A verified information-flow architecture

  2014cited by this paper
• Fully abstract compilation to JavaScript

  2013influential reference
• Layout Randomization and Nondeterminism

  2013cited by this paper
• Innovative instructions and software model for isolated execution

  2013influential reference
• Innovative Technology for CPU Based Attestation and Sealing

  2013cited by this paper
• Sancus: Low-cost Trustworthy Extensible Networked Devices with a Zero-software Trusted Computing Base

  2013influential reference
• Fides: selectively hardening software application components against kernel-level or process-level malware

  2012cited by this paper
• An equivalence-preserving CPS translation via multi-language semantics

  2011influential reference
• A kripke logical relation between ML and assembly

  2011cited by this paper
• Local Memory via Layout Randomization

  2011influential reference
• TrustVisor: Efficient TCB Reduction and Attestation

  2010cited by this paper
• Capsicum: Practical Capabilities for UNIX

  2010cited by this paper
• On Protection by Layout Randomization

  2010influential reference
• A Formally Verified Compiler Back-end

  2009cited by this paper
• Secure compilation of a multi-tier web language

  2009cited by this paper
• Biorthogonality, step-indexing and compiler correctness

  2009cited by this paper
• Typed closure conversion preserves observational equivalence

  2008influential reference
• A secure compiler for session abstractions

  2008cited by this paper
• Expressiveness of Process Algebras

  2008cited by this paper
• Security of multithreaded programs by compilation

  2007cited by this paper
• Secure implementations of typed channel abstractions

  2007cited by this paper
• Reducing TCB complexity for security-sensitive applications: three case studies

  2006cited by this paper
• Java Jr: Fully Abstract Trace Semantics for a Core Java Language

  2005cited by this paper
• A bisimulation for dynamic sealing

  2004cited by this paper
• A Fully Abstract Semantics for UML Components

  2004cited by this paper
• Protection in Programming-Language Translations

  1998influential reference
• Secure implementation of channel abstractions

  1998cited by this paper
• On the security of public key protocols

  1981cited by this paper
• LCF Considered as a Programming Language

  1977cited by this paper
• Mathematical Structures in Computer Science

  year unknowncited by this paper

• On Modular and Fully-Abstract Compilation

  2016cites this paper