Security Implications Of Compiler Optimizations On Cryptography -- A Review

A.P. Shivarpatna Venkatesh, A.B. Handadi, M. Mory, ArXiv:1907.02530 (2019).

Download
Restricted 1907.02530.pdf 663.88 KB
Preprint | English
Abstract
When implementing secure software, developers must ensure certain requirements, such as the erasure of secret data after its use and execution in real time. Such requirements are not explicitly captured by the C language and could potentially be violated by compiler optimizations. As a result, developers typically use indirect methods to hide their code's semantics from the compiler and avoid unwanted optimizations. However, such workarounds are not permanent solutions, as increasingly efficient compiler optimization causes code that was considered secure in the past now vulnerable. This paper is a literature review of (1) the security complications caused by compiler optimizations, (2) approaches used by developers to mitigate optimization problems, and (3) recent academic efforts towards enabling security engineers to communicate implicit security requirements to the compiler. In addition, we present a short study of six cryptographic libraries and how they approach the issue of ensuring security requirements. With this paper, we highlight the need for software developers and compiler designers to work together in order to design efficient systems for writing secure software.
Publishing Year
Journal Title
arXiv:1907.02530
LibreCat-ID

Cite this

Shivarpatna Venkatesh AP, Handadi AB, Mory M. Security Implications Of Compiler Optimizations On Cryptography -- A  Review. arXiv:190702530. 2019.
Shivarpatna Venkatesh, A. P., Handadi, A. B., & Mory, M. (2019). Security Implications Of Compiler Optimizations On Cryptography -- A  Review. ArXiv:1907.02530.
@article{Shivarpatna Venkatesh_Handadi_Mory_2019, title={Security Implications Of Compiler Optimizations On Cryptography -- A  Review}, journal={arXiv:1907.02530}, author={Shivarpatna Venkatesh, Ashwin Prasad and Handadi, A. Bhat and Mory, Martin}, year={2019} }
Shivarpatna Venkatesh, Ashwin Prasad, A. Bhat Handadi, and Martin Mory. “Security Implications Of Compiler Optimizations On Cryptography -- A  Review.” ArXiv:1907.02530, 2019.
A. P. Shivarpatna Venkatesh, A. B. Handadi, and M. Mory, “Security Implications Of Compiler Optimizations On Cryptography -- A  Review,” arXiv:1907.02530. 2019.
Shivarpatna Venkatesh, Ashwin Prasad, et al. “Security Implications Of Compiler Optimizations On Cryptography -- A  Review.” ArXiv:1907.02530, 2019.
Main File(s)
File Name
1907.02530.pdf 663.88 KB
Access Level
Restricted Closed Access
Last Uploaded
2021-02-17T11:39:14Z


Export

Marked Publications

Open Data LibreCat

Search this title in

Google Scholar