Security Implications Of Compiler Optimizations On Cryptography -- A Review

A.P.S. Venkatesh, A.B. Handadi, M. Mory, ArXiv:1907.02530 (2019).

Download
No fulltext has been uploaded.
Preprint | English
Author
; ;
Abstract
When implementing secure software, developers must ensure certain requirements, such as the erasure of secret data after its use and execution in real time. Such requirements are not explicitly captured by the C language and could potentially be violated by compiler optimizations. As a result, developers typically use indirect methods to hide their code's semantics from the compiler and avoid unwanted optimizations. However, such workarounds are not permanent solutions, as increasingly efficient compiler optimization causes code that was considered secure in the past now vulnerable. This paper is a literature review of (1) the security complications caused by compiler optimizations, (2) approaches used by developers to mitigate optimization problems, and (3) recent academic efforts towards enabling security engineers to communicate implicit security requirements to the compiler. In addition, we present a short study of six cryptographic libraries and how they approach the issue of ensuring security requirements. With this paper, we highlight the need for software developers and compiler designers to work together in order to design efficient systems for writing secure software.
Publishing Year
Journal Title
arXiv:1907.02530
LibreCat-ID

Cite this

Venkatesh APS, Handadi AB, Mory M. Security Implications Of Compiler Optimizations On Cryptography -- A  Review. arXiv:190702530. 2019.
Venkatesh, A. P. S., Handadi, A. B., & Mory, M. (2019). Security Implications Of Compiler Optimizations On Cryptography -- A  Review. ArXiv:1907.02530.
@article{Venkatesh_Handadi_Mory_2019, title={Security Implications Of Compiler Optimizations On Cryptography -- A  Review}, journal={arXiv:1907.02530}, author={Venkatesh, A. P. Shivarpatna and Handadi, A. Bhat and Mory, Martin}, year={2019} }
Venkatesh, A. P. Shivarpatna, A. Bhat Handadi, and Martin Mory. “Security Implications Of Compiler Optimizations On Cryptography -- A  Review.” ArXiv:1907.02530, 2019.
A. P. S. Venkatesh, A. B. Handadi, and M. Mory, “Security Implications Of Compiler Optimizations On Cryptography -- A  Review,” arXiv:1907.02530. 2019.
Venkatesh, A. P. Shivarpatna, et al. “Security Implications Of Compiler Optimizations On Cryptography -- A  Review.” ArXiv:1907.02530, 2019.

Export

Marked Publications

Open Data LibreCat

Search this title in

Google Scholar