Formally Verified Cryptographic Web Applications in WebAssembly
Offered By: IEEE via YouTube
Course Description
Overview
Explore a 19-minute IEEE conference talk on formally verified cryptographic web applications in WebAssembly. Delve into the development of a new toolchain that compiles Low*, a subset of the F* programming language, into WebAssembly. Learn about two case studies: WHACL*, a WebAssembly version of the verified HACL* cryptographic library, and LibSignal*, a new verified implementation of the Signal protocol in WebAssembly. Discover how these advancements can be applied to modern web applications like WhatsApp, enhancing security in cryptographic components. Gain insights into the benefits of targeting WebAssembly over JavaScript for cryptographic code, and understand the focus on compactness and auditability in the compilation pipeline. Examine the verification process, implementation details, and performance implications of this approach to building high-assurance cryptographic libraries and protocol implementations.
Syllabus
Introduction
Contributions
Key Points
Verification
Implementation
Why WebAssembly
Summary
Verification Results
API Replacement
Performance
Taught by
IEEE Symposium on Security and Privacy
Tags
Related Courses
SPARK 2014AdaCore via Independent Automated Reasoning: Symbolic Model Checking
EIT Digital via Coursera Software Testing and Verification
University System of Maryland via edX Haskell for Imperative Programmers
YouTube Model Checking and Temporal Logic - E. Allen Emerson's Turing Award Lecture
Association for Computing Machinery (ACM) via YouTube