Formalizing, verifying and applying ISA security guarantees as universal contracts

[Free GPT-4]
[PDF] acm.org

Cerise: Program verification on a capability machine in the presence of untrusted code

AL Georges*, A Guéneau*, T Van Strydonck… - Journal of the …, 2024 - dl.acm.org
A capability machine is a type of CPU allowing fine-grained privilege separation using
capabilities, machine words that represent certain kinds of authority. We present a …
Save Cite Cited by 9 Related articles All 20 versionsFree GPT-4
[Free GPT-4]
[PDF] acm.org

SECOMP: Formally Secure Compilation of Compartmentalized C Programs

J Thibault, R Blanco, D Lee, S Argo… - Proceedings of the …, 2024 - dl.acm.org
Undefined behavior in C often causes devastating security vulnerabilities. One practical
mitigation is compartmentalization, which allows developers to structure large programs into …
Save Cite Cited by 1 Related articles All 2 versionsFree GPT-4
[Free GPT-4]
[PDF] github.io

[PDF][PDF] Proving capability safety in the presence of indirect sentries Technical report

J Rousseau, AL Georges, J Pichon-Pharabod… - 2024 - junerousseau.github.io
This document explores the impact of extending the CHERI architecture with indirect
sentries on the core security guarantee of CHERI, capability safety. Indirect sentries are a …
Save Cite Related articles View as HTML