Mon 24 Jun 2019 10:40 - 11:00 at 224AB - Language Design II Chair(s): Santosh Nagarakatte

Real-world cryptographic code is often written in a subset of C intended to
execute in constant-time, thereby avoiding timing side channel
vulnerabilities. This C subset eschews structured programming as we know it:
if-statements, looping constructs, and procedural abstractions can leak
timing information when handling sensitive data. The resulting obfuscation
has led to subtle bugs, even in widely-used high-profile libraries like

To address the challenge of writing constant-time cryptographic code, we
present FaCT, a crypto DSL that provides high-level but safe language
constructs. The FaCT compiler uses a secrecy type system to automatically
transform potentially timing-sensitive high-level code into low-level,
constant-time LLVM bitcode. We develop the language and type system,
formalize the constant-time transformation, and present an empirical
evaluation that uses FaCT to implement core crypto routines from several
open-source projects including OpenSSL, libsodium, and curve25519-donna. Our
evaluation shows that FaCT's design makes it possible to write
\emph{readable}, high-level cryptographic code, with \emph{efficient},
\emph{constant-time} behavior.

Mon 24 Jun
Times are displayed in time zone: (GMT-07:00) Tijuana, Baja California change

10:00 - 11:00: PLDI Research Papers - Language Design II at 224AB
Chair(s): Santosh NagarakatteRutgers University, USA
pldi-2019-papers10:00 - 10:20
Roshan DathathriUniversity of Texas at Austin, USA, Olli Saarikivi, Hao ChenMicrosoft Research, Kim LaineMicrosoft Research, n.n., Kristin LauterMicrosoft Research, n.n., Saeed MalekiMicrosoft Research, Madan MusuvathiMicrosoft Research, Todd MytkowiczMicrosoft Research
DOI Pre-print Media Attached
pldi-2019-papers10:20 - 10:40
Darius MercadierSorbonne Universités —UPMC Univ Paris 06, Pierre-Evariste DagandLIP6/CNRS
Media Attached
pldi-2019-papers10:40 - 11:00
Sunjay CauligiUniversity of California, San Diego, Gary Soeller, Brian JohannesmeyerUniversity of California at San Diego, USA, Fraser BrownStanford University, Riad S. WahbyStanford University, USA, John RennerUniversity of California, San Diego, Benjamin GregoireINRIA, Gilles BartheIMDEA Software Institute, Ranjit JhalaUniversity of California, San Diego, Deian StefanUniversity of California San Diego
Media Attached