Implementing a Direct Method for Certificate Translation

Barthe, Gilles; Grégoire, Benjamin; Heraud, Sylvain; Kunz, César; Pacalet, Anne

doi:10.1007/978-3-642-10373-5_28

Implementing a Direct Method for Certificate Translation

Gilles Barthe¹⁸,
Benjamin Grégoire¹⁹,
Sylvain Heraud¹⁹,
César Kunz¹⁸ &
…
Anne Pacalet¹⁹

Conference paper

875 Accesses
3 Citations

Part of the book series: Lecture Notes in Computer Science ((LNPSE,volume 5885))

Abstract

Certificate translation is a method that transforms certificates of source programs into certificates of their compilation. It provides strong guarantees on low-level code, and is useful for eliminating trust in the compiler (for high assurance code) and in the code producer for mobile code security. The theory of certificate translation has been developed in earlier work, but no implementation exists. As a result, it has been difficult to evaluate its practicality, and in particular the impact of certificate translation on the size of certificates.

In this paper, we report on the development of a certificate translator prototype. The tool takes as input a high-level program, defined in a small subset of the C programming language, and a logical specification à la ACSL, and computes a set of verification conditions for the Coq proof assistant. Once proof obligations are discharged, the tool compiles the source program into an intermediate RTL (i.e., three-address code) representation, and then performs a sequence of compiler optimizations. At each step, certificates are transformed automatically to produce a proof for the transformed programs. For optimizations that rely on arithmetic reasoning, such as constant propagation and common subexpression, the tool implements a new certificate translation strategy that minimizes certificate growth.

Partially funded by the EU projects MOBIUS and HATS.

This is a preview of subscription content, log in via an institution.

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 84.99; Price excludes VAT (USA)

Softcover Book: USD 109.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Barnett, M., Leino, K.R.M., Schulte, W.: The Spec# programming system: An overview. In: Barthe, G., Burdy, L., Huisman, M., Lanet, J.-L., Muntean, T. (eds.) CASSIS 2004. LNCS, vol. 3362, pp. 49–69. Springer, Heidelberg (2005)
Google Scholar
Barthe, G., Kunz, C.: Certificate translation in abstract interpretation. In: Drossopoulou, S. (ed.) ESOP 2008. LNCS, vol. 4960, pp. 368–382. Springer, Heidelberg (2008)
Chapter Google Scholar
Barthe, G., Grégoire, B., Kunz, C., Rezk, T.: Certificate translation for optimizing compilers. ACM Transactions on Programming Languages and Systems 31(5), 18:1–18:45 (2009)
Article Google Scholar
Chen, J., Hawblitzel, C., Perry, F., Emmi, M., Condit, J., Coetzee, D., Pratikakis, P.: Type-preserving compilation for large-scale optimizing object-oriented compilers. In: Proceedings of the ACM SIGPLAN 2008 Conference on Programming Language Design and Implementation, pp. 183–192. ACM, New York (2008)
Chapter Google Scholar
Monate, B., Correnson, L.: Frama-C, http://frama-c.cea.fr
Morrisett, G., Walker, D., Crary, K., Glew, N.: From system F to typed assembly language. ACM Transactions on Programming Languages and Systems 21(3), 527–568 (1999); Expanded version of a paper presented at POPL 1998 (1998)
Article Google Scholar
Necula, G.C.: Compiling with Proofs. PhD thesis, Carnegie Mellon University, Available as Technical Report CMU-CS-98-154 (October 1998)
Google Scholar
Nordio, M., Müller, P., Meyer, B.: Proof-transforming compilation of eiffel programs. In: Paige, R. (ed.) TOOLS-EUROPE. LNBIP. Springer, Heidelberg (2008)
Google Scholar
Pavlova, M.: Java bytecode verification and its applications. Thèse de doctorat, spécialité informatique, Université Nice Sophia Antipolis, France (January 2007)
Google Scholar
Seo, S., Yang, H., Yi, K., Han, T.: Goal-directed weakening of abstract interpretation results. ACM Transactions on Programming Languages and Systems 29(6), 39:1–39:39 (2007)
Article Google Scholar

Download references

Author information

Authors and Affiliations

IMDEA Software, Spain
Gilles Barthe & César Kunz
INRIA Sophia Antipolis - Méditerranée, France
Benjamin Grégoire, Sylvain Heraud & Anne Pacalet

Authors

Gilles Barthe
View author publications
You can also search for this author in PubMed Google Scholar
Benjamin Grégoire
View author publications
You can also search for this author in PubMed Google Scholar
Sylvain Heraud
View author publications
You can also search for this author in PubMed Google Scholar
César Kunz
View author publications
You can also search for this author in PubMed Google Scholar
Anne Pacalet
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Coordenadora da Engenharia de Computação, Diretora de Publicações da SBC, Depto. Informática, ontifícia Universidade Católica do Rio de Janeiro, ,, R. Marques de Sao Vicente 225 - Prédio do RDC - Sala 416, Rio de Jan,
Karin Breitman
Department of Computer Science, University of York, ,, Heslington, YO10 5DD, York, UK,
Ana Cavalcanti

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Barthe, G., Grégoire, B., Heraud, S., Kunz, C., Pacalet, A. (2009). Implementing a Direct Method for Certificate Translation. In: Breitman, K., Cavalcanti, A. (eds) Formal Methods and Software Engineering. ICFEM 2009. Lecture Notes in Computer Science, vol 5885. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-10373-5_28

Download citation

DOI: https://doi.org/10.1007/978-3-642-10373-5_28
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-10372-8
Online ISBN: 978-3-642-10373-5
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics