Supervision : Karine HEYDEMANN
Co-supervision : Albert Cohen, Google AI et Arnaud de Grandmaison, Arm

Préservation des propriétés dans un flot de compilation optimisant

In order to ensure security guarantees of binary applications with regards to different attacks (such as fault injections, side-channel attacks or data remanence exploits), program analyses and verifications have to be performed at the binary level. These analyses and verifications require various security or functional properties about the program being analyzed. It is thus necessary to propagate these properties, usually expressed in the source level, down to binary code. However, preserving these properties throughout the optimizing compilation flow is hard due to code optimizations which reorder computations or eliminate unused variables. This thesis presents two approaches to preserve and propagate program properties throughout the optimizing compilation flow with minimal changes to individual transformation passes. In the implementations in LLVM, properties are emitted into executable binaries as DWARF debug information, which can next be used by binary analysis tools. Furthermore, our mechanisms can be applied to address the problem of preserving security protections inserted at the source level, compiling with optimizations enabled.

Phd defence : 04/02/2021

Jury members :

POTET Marie-Laure (Professeure des Universités/ Grenoble INP, Vérimag) [Rapporteuse]
ROHOU Erven (Directeur de Recherche/ INRIA) [Rapporteur]
BLAZY Sandrine (Professeure des Universités/ Université de Rennes 1, IRISA)
MINÉ Antoine (Professeur des Universités/ Sorbonne Université, LIP6)
COUROUSSÉ Damien (Ingénieur de Recherche/ CEA LIST)
DE GRANDMAISON Arnaud (Senior Principal Engineer/ ARM)
HEYDEMANN Karine (Maître de Conférences HDR/ Sorbonne Université, LIP6)
COHEN Albert (Research Scientist/ Google Paris)

2019-2021 Publications

• 2021
  • S. Vu : “Préservation des propriétés dans un flot de compilation optimisant”, thesis, phd defence 04/02/2021, supervision Heydemann, Karine, co-supervision : Albert, Cohen, Google, AI et Arnaud de Grandmaison, Arm (2021)
  • S. Vu, A. Cohen, A. De Grandmaison, Ch. Guillon, K. Heydemann : “Reconciling optimization with secure compilation”, Proceedings of the ACM on Programming Languages, vol. 5 (OOPSLA), Chicago, IL, United States, pp. 1-30, (ACM) (2021)
• 2020
  • S. Vu, K. Heydemann, A. De Grandmaison, A. Cohen : “Secure delivery of program properties through optimizing compilation”, CC '20: 29^th International Conference on Compiler Construction, San Diego, CA, United States, pp. 14-26, (ACM) (2020)
• 2019
  • S. Vu, K. Heydemann, A. De Grandmaison, A. Cohen : “Compilation and Optimization with Security Annotations”, European LLVM Developers Meeting, Bruxelles, Belgium (2019)
  • J.‑B. Bréjon, K. Heydemann, E. Encrenaz, Quentin L. Meunier, S. Vu : “Fault attack vulnerability assessment of binary code”, Cryptography and Security in Computing Systems (CS2’19), Valencia, Spain, pp. 13-18, (ACM) (2019)