/provably-safe-sandboxing-wasm-usenix22

Top-level companion software artifact for the paper "Provably-Safe Multilingual Software Sandboxing using WebAssembly"

Primary LanguageWebAssemblyBSD 3-Clause "New" or "Revised" LicenseBSD-3-Clause

Provably-Safe Multilingual Software Sandboxing using WebAssembly

This is the top-level companion software artifact repository for the paper "Provably-Safe Multilingual Software Sandboxing using WebAssembly". The other repositories relevant to this artifact are locked to specific revisions using git submodules. To clone everything in one go, use:

git clone --recursive \
    https://github.com/secure-foundations/provably-safe-sandboxing-wasm-usenix22

This repository also contains the files necessary to benchmark vWasm and rWasm. See the README.md files in the subdirectories benchmarks/, microbenchmark-compare-read-arr/, and image-conversion-scenario/ for more information. Plots produced from the raw output of the benchmarks can be produced using the files in figures/.

To find the latest versions of the submodules, rather than the fixed tags maintained for this software artifact, head over directly to the repositories:

  • rWasm: a high-performance informally-verified provably-safe sandboxing compiler
  • vWasm: a formally-verified provably-safe sandboxing compiler, built in F*
  • wasm-semantics-fuzzer: a tool for providing greater assurance in the semantic correctness of any Wasm implementation

License

BSD 3-Clause License. See LICENSE.

Publication

Provably-Safe Multilingual Software Sandboxing using WebAssembly. Jay Bosamiya, Wen Shih Lim, and Bryan Parno. In Proceedings of the USENIX Security Symposium, August, 2022.

@inproceedings{provably-safe-sandboxing-wasm,
  author    = {Bosamiya, Jay and Lim, Wen Shih and Parno, Bryan},
  booktitle = {Proceedings of the USENIX Security Symposium},
  month     = {August},
  title     = {Provably-Safe Multilingual Software Sandboxing using {WebAssembly}},
  year      = {2022}
}