Automatic and Incremental Repair for Speculative Information Leaks

Joachim Bard; Swen Jacobs; Yakir Vizel

doi:10.1007/978-3-031-50521-8_14

Automatic and Incremental Repair for Speculative Information Leaks

Joachim Bard, Swen Jacobs, Yakir Vizel

Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

We present CureSpec, the first model-checking based framework for automatic repair of programs with respect to information leaks in the presence of side-channels and speculative execution. CureSpec is based on formal models of attacker capabilities, including observable side channels, inspired by the Spectre-PHT attacks. For a given attacker model, CureSpec is able to either prove that the program is secure, or detect potential side-channel vulnerabilities and automatically insert mitigations such that the resulting code is provably secure. Moreover, CureSpec can provide a certificate for the security of the program that can be independently checked. We have implemented CureSpec in the SeaHorn framework and show that it can effectively repair security-critical code, for example the AES encryption from the OpenSSL library.

Original language	English
Title of host publication	Verification, Model Checking, and Abstract Interpretation - 25th International Conference, VMCAI 2024, Proceedings
Editors	Rayna Dimitrova, Ori Lahav, Sebastian Wolff
Pages	291-313
Number of pages	23
DOIs	https://doi.org/10.1007/978-3-031-50521-8_14
State	Published - 2024
Event	25th International Conference on Verification, Model Checking, and Abstract Interpretation, VMCAI 2024 was co-located with 51st ACM SIGPLAN Symposium on Principles of Programming Languages, POPL 2024 - London, United Kingdom Duration: 15 Jan 2024 → 16 Jan 2024

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	14500 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	25th International Conference on Verification, Model Checking, and Abstract Interpretation, VMCAI 2024 was co-located with 51st ACM SIGPLAN Symposium on Principles of Programming Languages, POPL 2024
Country/Territory	United Kingdom
City	London
Period	15/01/24 → 16/01/24

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

Access to Document

10.1007/978-3-031-50521-8_14

Cite this

Bard, J., Jacobs, S., & Vizel, Y. (2024). Automatic and Incremental Repair for Speculative Information Leaks. In R. Dimitrova, O. Lahav, & S. Wolff (Eds.), Verification, Model Checking, and Abstract Interpretation - 25th International Conference, VMCAI 2024, Proceedings (pp. 291-313). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14500 LNCS). https://doi.org/10.1007/978-3-031-50521-8_14

Bard, Joachim ; Jacobs, Swen ; Vizel, Yakir. / Automatic and Incremental Repair for Speculative Information Leaks. Verification, Model Checking, and Abstract Interpretation - 25th International Conference, VMCAI 2024, Proceedings. editor / Rayna Dimitrova ; Ori Lahav ; Sebastian Wolff. 2024. pp. 291-313 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{7eb24f91e2f84345a74237c1c3cefe80,

title = "Automatic and Incremental Repair for Speculative Information Leaks",

abstract = "We present CureSpec, the first model-checking based framework for automatic repair of programs with respect to information leaks in the presence of side-channels and speculative execution. CureSpec is based on formal models of attacker capabilities, including observable side channels, inspired by the Spectre-PHT attacks. For a given attacker model, CureSpec is able to either prove that the program is secure, or detect potential side-channel vulnerabilities and automatically insert mitigations such that the resulting code is provably secure. Moreover, CureSpec can provide a certificate for the security of the program that can be independently checked. We have implemented CureSpec in the SeaHorn framework and show that it can effectively repair security-critical code, for example the AES encryption from the OpenSSL library.",

author = "Joachim Bard and Swen Jacobs and Yakir Vizel",

note = "Publisher Copyright: {\textcopyright} 2024, The Author(s), under exclusive license to Springer Nature Switzerland AG.; 25th International Conference on Verification, Model Checking, and Abstract Interpretation, VMCAI 2024 was co-located with 51st ACM SIGPLAN Symposium on Principles of Programming Languages, POPL 2024 ; Conference date: 15-01-2024 Through 16-01-2024",

year = "2024",

doi = "10.1007/978-3-031-50521-8_14",

language = "אנגלית",

isbn = "9783031505201",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "291--313",

editor = "Rayna Dimitrova and Ori Lahav and Sebastian Wolff",

booktitle = "Verification, Model Checking, and Abstract Interpretation - 25th International Conference, VMCAI 2024, Proceedings",

}

Bard, J, Jacobs, S & Vizel, Y 2024, Automatic and Incremental Repair for Speculative Information Leaks. in R Dimitrova, O Lahav & S Wolff (eds), Verification, Model Checking, and Abstract Interpretation - 25th International Conference, VMCAI 2024, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 14500 LNCS, pp. 291-313, 25th International Conference on Verification, Model Checking, and Abstract Interpretation, VMCAI 2024 was co-located with 51st ACM SIGPLAN Symposium on Principles of Programming Languages, POPL 2024, London, United Kingdom, 15/01/24. https://doi.org/10.1007/978-3-031-50521-8_14

Automatic and Incremental Repair for Speculative Information Leaks. / Bard, Joachim; Jacobs, Swen; Vizel, Yakir.
Verification, Model Checking, and Abstract Interpretation - 25th International Conference, VMCAI 2024, Proceedings. ed. / Rayna Dimitrova; Ori Lahav; Sebastian Wolff. 2024. p. 291-313 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 14500 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Automatic and Incremental Repair for Speculative Information Leaks

AU - Bard, Joachim

AU - Jacobs, Swen

AU - Vizel, Yakir

PY - 2024

Y1 - 2024

N2 - We present CureSpec, the first model-checking based framework for automatic repair of programs with respect to information leaks in the presence of side-channels and speculative execution. CureSpec is based on formal models of attacker capabilities, including observable side channels, inspired by the Spectre-PHT attacks. For a given attacker model, CureSpec is able to either prove that the program is secure, or detect potential side-channel vulnerabilities and automatically insert mitigations such that the resulting code is provably secure. Moreover, CureSpec can provide a certificate for the security of the program that can be independently checked. We have implemented CureSpec in the SeaHorn framework and show that it can effectively repair security-critical code, for example the AES encryption from the OpenSSL library.

AB - We present CureSpec, the first model-checking based framework for automatic repair of programs with respect to information leaks in the presence of side-channels and speculative execution. CureSpec is based on formal models of attacker capabilities, including observable side channels, inspired by the Spectre-PHT attacks. For a given attacker model, CureSpec is able to either prove that the program is secure, or detect potential side-channel vulnerabilities and automatically insert mitigations such that the resulting code is provably secure. Moreover, CureSpec can provide a certificate for the security of the program that can be independently checked. We have implemented CureSpec in the SeaHorn framework and show that it can effectively repair security-critical code, for example the AES encryption from the OpenSSL library.

UR - http://www.scopus.com/inward/record.url?scp=85181985206&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-50521-8_14

DO - 10.1007/978-3-031-50521-8_14

M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???

AN - SCOPUS:85181985206

SN - 9783031505201

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 291

EP - 313

BT - Verification, Model Checking, and Abstract Interpretation - 25th International Conference, VMCAI 2024, Proceedings

A2 - Dimitrova, Rayna

A2 - Lahav, Ori

A2 - Wolff, Sebastian

T2 - 25th International Conference on Verification, Model Checking, and Abstract Interpretation, VMCAI 2024 was co-located with 51st ACM SIGPLAN Symposium on Principles of Programming Languages, POPL 2024

Y2 - 15 January 2024 through 16 January 2024

ER -

Bard J, Jacobs S, Vizel Y. Automatic and Incremental Repair for Speculative Information Leaks. In Dimitrova R, Lahav O, Wolff S, editors, Verification, Model Checking, and Abstract Interpretation - 25th International Conference, VMCAI 2024, Proceedings. 2024. p. 291-313. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-031-50521-8_14