IRIS

Mainstream compilers implement different countermeasures to prevent specific classes of speculative execution attacks. Unfortunately, these countermeasures either lack formal guarantees or come with proofs restricted to speculative semantics capturing only a subset of the speculation mechanisms supported by modern CPUs, thereby limiting their practical applicability. Ideally, these security proofs should target a speculative semantics capturing the effects of all speculation mechanisms implemented in modern CPUs. However, this is impractical and requires new secure compilation proofs to support additional speculation mechanisms. In this paper, we address this problem by proposing a novel secure compilation framework that allows lifting the security guarantees provided by Spectre countermeasures from weaker speculative semantics (ignoring some speculation mechanisms) to stronger ones (accounting for the omitted mechanisms) without requiring new secure compilation proofs. Using our lifti...

Do You Even Lift? Strengthening Compiler Security Guarantees against Spectre Attacks / Fabian, Xaver; Patrignani, Marco; Guarnieri, Marco; Backes, Michael. - In: PROCEEDINGS OF ACM ON PROGRAMMING LANGUAGES. - ISSN 2475-1421. - 9:POPL(2025), pp. 893-922. [10.1145/3704867]

Do You Even Lift? Strengthening Compiler Security Guarantees against Spectre Attacks

Xaver Fabian;Marco Patrignani;
2025-01-01

Abstract

Mainstream compilers implement different countermeasures to prevent specific classes of speculative execution attacks. Unfortunately, these countermeasures either lack formal guarantees or come with proofs restricted to speculative semantics capturing only a subset of the speculation mechanisms supported by modern CPUs, thereby limiting their practical applicability. Ideally, these security proofs should target a speculative semantics capturing the effects of all speculation mechanisms implemented in modern CPUs. However, this is impractical and requires new secure compilation proofs to support additional speculation mechanisms. In this paper, we address this problem by proposing a novel secure compilation framework that allows lifting the security guarantees provided by Spectre countermeasures from weaker speculative semantics (ignoring some speculation mechanisms) to stronger ones (accounting for the omitted mechanisms) without requiring new secure compilation proofs. Using our lifti...
2025
PROCEEDINGS OF ACM ON PROGRAMMING LANGUAGES
POPL
2-s2.0-85215378113
WOS:001471014100016
Fabian, Xaver; Patrignani, Marco; Guarnieri, Marco; Backes, Michael
Do You Even Lift? Strengthening Compiler Security Guarantees against Spectre Attacks / Fabian, Xaver; Patrignani, Marco; Guarnieri, Marco; Backes, Michael. - In: PROCEEDINGS OF ACM ON PROGRAMMING LANGUAGES. - ISSN 2475-1421. - 9:POPL(2025), pp. 893-922. [10.1145/3704867]
File in questo prodotto:
File Dimensione Formato  
main.pdf

accesso aperto

Tipologia: Versione editoriale (Publisher’s layout)
Licenza: Creative commons
Dimensione 978.41 kB
Formato Adobe PDF
Visualizza/Apri
978.41 kB Adobe PDF Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/447892
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 0
  • ???jsp.display-item.citation.isi??? 0
  • OpenAlex 0
social impact