NSF PAR Search | NSF Public Access Repository

Note: When clicking on a Digital Object Identifier (DOI) number, you will be taken to an external site maintained by the publisher. Some full text articles may not yet be available without a charge during the embargo (administrative interval).
What is a DOI Number?

Some links on this page may take you to non-federal websites. Their policies may differ from this site.

Lightweight, Modular Verification for WebAssembly-to-Native Instruction Selection

https://doi.org/10.1145/3617232.3624862

VanHattum, Alexa; Pardeshi, Monica; Fallin, Chris; Sampson, Adrian; Brown, Fraser (April 2024, ACM)

Language-level guarantees---like module runtime isolation for WebAssembly (Wasm)---are only as strong as the compiler that produces a final, native-machine-specific executable. The process of lowering language-level constructions to ISA-specific instructions can introduce subtle bugs that violate security guarantees. In this paper, we present Crocus, a system for lightweight, modular verification of instruction-lowering rules within Cranelift, a production retargetable Wasm native code generator. We use Crocus to verify lowering rules that cover WebAssembly 1.0 support for integer operations in the ARM aarch64 backend. We show that Crocus can reproduce 3 known bugs (including a 9.9/10 severity CVE), identify 2 previously-unknown bugs and an underspecified compiler invariant, and help analyze the root causes of a new bug.
more » « less
Full Text Available
Going beyond the Limits of SFI: Flexible and Secure Hardware-Assisted In-Process Isolation with HFI

https://doi.org/10.1109/MM.2024.3422977

Narayan, Shravan; Garfinkel, Tal; Taram, Mohammadkazem; Rudek, Joey; Moghimi, Daniel; Johnson, Evan; Fallin, Chris; Vahldiek-Oberwagner, Anjo; LeMay, Michael; Sahita, Ravi; et al (July 2024, IEEE Micro)

Hardware-assisted Fault Isolation (HFI) is a minimal extension to current processors that supports secure, flexible, and efficient in-process isolation. HFI addresses the limitations of software-based fault isolation (SFI) systems including: runtime overheads, limited scalability, vulnerability to Spectre attacks, and limited compatibility with existing code and binaries. HFI can be seamlessly integrated into exisiting SFI systems (e.g. WebAssembly), or directly sandbox unmodified native binaries. To ease adoption, HFI proposes incremental changes to existing high-performance processors.
more » « less
Full Text Available
Going beyond the Limits of SFI: Flexible and Secure Hardware-Assisted In-Process Isolation with HFI

https://doi.org/10.1145/3582016.3582023

Narayan, Shravan; Garfinkel, Tal; Taram, Mohammadkazem; Rudek, Joey; Moghimi, Daniel; Johnson, Evan; Fallin, Chris; Vahldiek-Oberwagner, Anjo; LeMay, Michael; Sahita, Ravi; et al (March 2023, Proceedings of the 28th ACM International Conference on Architectural Support for Programming Languages and Operating Systems, Volume 3)

We introduce Hardware-assisted Fault Isolation (HFI), a simple extension to existing processors to support secure, flexible, and efficient in-process isolation. HFI addresses the limitations of existing software-based isolation (SFI) systems including: runtime overheads, limited scalability, vulnerability to Spectre attacks, and limited compatibility with existing code. HFI can seamlessly integrate with current SFI systems (e.g., WebAssembly), or directly sandbox unmodi!ed native binaries. To ease adoption, HFI relies only on incremental changes to the data and control path of existing high-performance processors. We evaluate HFI for x86-64 using the gem5 simulator and compiler-based emulation on a mix of real and synthetic workloads.
more » « less
Full Text Available

Search for: All records