CtChecker: A Precise, Sound and Efficient Static Analysis for Constant-Time Programming (Artifact)

Authors Quan Zhou , Sixuan Dang , Danfeng Zhang



PDF
Thumbnail PDF

Artifact Description

DARTS.10.2.26.pdf
  • Filesize: 0.53 MB
  • 5 pages

Document Identifiers

Author Details

Quan Zhou
  • Penn State University, University Park, PA, USA
Sixuan Dang
  • Duke University, Durham, NC, USA
Danfeng Zhang
  • Duke University, Durham, NC, USA

Cite AsGet BibTex

Quan Zhou, Sixuan Dang, and Danfeng Zhang. CtChecker: A Precise, Sound and Efficient Static Analysis for Constant-Time Programming (Artifact). In Special Issue of the 38th European Conference on Object-Oriented Programming (ECOOP 2024). Dagstuhl Artifacts Series (DARTS), Volume 10, Issue 2, pp. 26:1-26:5, Schloss Dagstuhl – Leibniz-Zentrum für Informatik (2024)
https://doi.org/10.4230/DARTS.10.2.26

Artifact

Artifact Evaluation Policy

The artifact has been evaluated as described in the ECOOP 2024 Call for Artifacts and the ACM Artifact Review and Badging Policy.

Abstract

This artifact includes the implementation of the CtChecker analysis toolchain described in the corresponding paper. We provide two options to run CtChecker, building it from source or running the pre-built tool with Docker. All evaluated benchmark source code are provided in the artifact. A walkthrough of how to reproduce the evaluation results in the paper is provided in the Appendix.

Subject Classification

ACM Subject Classification
  • Security and privacy → Information flow control
Keywords
  • Information flow control
  • static analysis
  • side channel
  • constant-time programming

Metrics

References

  1. Pietro Borrello, Daniele Cono D'Elia, Leonardo Querzoni, and Cristiano Giuffrida. Constantine: Automatic side-channel resistance using efficient control and data flow linearization. In Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security, pages 715-733, 2021. Google Scholar
  2. Meng Wu, Shengjian Guo, Patrick Schaumont, and Chao Wang. Eliminating timing side-channel leaks using program repair. In Proceedings of the 27th ACM SIGSOFT International Symposium on Software Testing and Analysis, pages 15-26, 2018. Google Scholar
Questions / Remarks / Feedback
X

Feedback for Dagstuhl Publishing


Thanks for your feedback!

Feedback submitted

Could not send message

Please try again later or send an E-mail