English
Related papers

Related papers: CT-Wasm: Type-Driven Secure Cryptography for the W…

200 papers

WebAssembly (Wasm) is a low-level portable code format offering near native performance. It is intended as a compilation target for a wide variety of source languages. However, Wasm provides no direct support for non-local control flow…

Security bugs and trapdoors in smart contracts have been impacting the Ethereum community since its inception. Conceptually, the 1.45-million Ethereum's contracts form a single "gigantic program" whose behaviors are determined by the…

Cryptography and Security · Computer Science 2025-08-08 Thomas Ball , Nikolaj S. Bjørner , Ashley J. Chen , Shuo Chen , Yang Chen , Zhongxin Guo , Tzu-Han Hsu , Peng Liu , Nanqing Luo

Smart contracts are crucial elements of decentralized technologies, but they face significant obstacles to trustworthiness due to security bugs and trapdoors. To address the core issue, we propose a technology that enables programmers to…

Cryptography and Security · Computer Science 2023-04-19 Nikolaj Bjørner , Shuo Chen , Yang Chen , Zhongxin Guo , Peng Liu , Nanqing Luo

As large language models (LLMs) generate texts with increasing fluency and realism, there is a growing need to identify the source of texts to prevent the abuse of LLMs. Text watermarking techniques have proven reliable in distinguishing…

Computation and Language · Computer Science 2024-04-04 Lean Wang , Wenkai Yang , Deli Chen , Hao Zhou , Yankai Lin , Fandong Meng , Jie Zhou , Xu Sun

Timing side-channel attacks exploit secret-dependent execution time to fully or partially recover secrets of cryptographic implementations, posing a severe threat to software security. Constant-time programming discipline is an effective…

Cryptography and Security · Computer Science 2024-02-22 Luwei Cai , Fu Song , Taolue Chen

WebAssembly (Wasm) is an emerging binary format that draws great attention from our community. However, Wasm binaries are weakly protected, as they can be read, edited, and manipulated by adversaries using either the officially provided…

Cryptography and Security · Computer Science 2023-08-08 Shangtong Cao , Ningyu He , Yao Guo , Haoyu Wang

WebAssembly has become a crucial part of the modern web, offering a faster alternative to JavaScript in browsers. While boosting rich applications in browser, this technology is also very efficient to develop cryptojacking malware. This has…

Software Engineering · Computer Science 2023-06-08 Javier Cabrera-Arteaga , Martin Monperrus , Tim Toady , Benoit Baudry

We introduce Wasm Logic, a sound program logic for first-order, encapsulated WebAssembly. We design a novel assertion syntax, tailored to WebAssembly's stack-based semantics and the strong guarantees given by WebAssembly's type system, and…

Programming Languages · Computer Science 2020-05-22 Conrad Watt , Petar Maksimović , Neelakantan R. Krishnaswami , Philippa Gardner

In this paper, we present the design of Owi, a symbolic interpreter for WebAssembly written in OCaml, and how we used it to create a state-of-the-art tool to find bugs in programs combining C and Rust code. WebAssembly (Wasm) is a binary…

Programming Languages · Computer Science 2024-12-10 Léo Andrès , Filipe Marques , Arthur Carcano , Pierre Chambart , José Fragoso Santos , Jean-Christophe Filliâtre

WebAssembly (Wasm) has emerged as a powerful technology for executing high-performance code and reusing legacy code in web browsers. With its increasing adoption, ensuring the reliability of WebAssembly code becomes paramount. In this…

Software Engineering · Computer Science 2024-12-31 Sara Baradaran , Liyan Huang , Mukund Raghothaman , Weihang Wang

Wasm runtime is a fundamental component in the Wasm ecosystem, as it directly impacts whether Wasm applications can be executed as expected. Bugs in Wasm runtime bugs are frequently reported, thus our research community has made a few…

Software Engineering · Computer Science 2023-12-19 Shangtong Cao , Ningyu He , Xinyu She , Yixuan Zhang , Mu Zhang , Haoyu Wang

Wasm is gaining popularity outside the Web as a well-specified low-level binary format with ISA portability, low memory footprint and polyglot targetability, enabling efficient in-process sandboxing of untrusted code. Despite these…

Operating Systems · Computer Science 2025-03-28 Arjun Ramesh , Tianshu Huang , Ben L. Titzer , Anthony Rowe

Web browsers, particularly Google Chrome and other Chromium-based browsers, have grown in popularity over the past decade, with browser extensions becoming an integral part of their ecosystem. These extensions can customize and enhance the…

Cryptography and Security · Computer Science 2024-08-27 José Miguel Moreno , Narseo Vallina-Rodriguez , Juan Tapiador

WebAssembly is a binary format for code that is gaining popularity thanks to its focus on portability and performance. Currently, the most common use case for WebAssembly is execution in a browser. It is also being increasingly adopted as a…

Software Engineering · Computer Science 2024-07-23 Mattia Paccamiccio , Franco Raimondi , Michele Loreti

The constant-time discipline is a software-based countermeasure used for protecting high assurance cryptographic implementations against timing side-channel attacks. Constant-time is effective (it protects against many known attacks),…

Cryptography and Security · Computer Science 2020-05-12 Sunjay Cauligi , Craig Disselkoen , Klaus v. Gleissenthall , Dean Tullsen , Deian Stefan , Tamara Rezk , Gilles Barthe

WebAssembly (Wasm) is rapidly gaining popularity as a distribution format for software components embedded in various security-critical domains. Unfortunately, despite its prudent design, WebAssembly's primary use case as a compilation…

Cryptography and Security · Computer Science 2025-09-11 Markus Scherer , Jeppe Fredsgaard Blaabjerg , Alexander Sjösten , Matteo Maffei

JavaScript (JS) is one of the most popular programming languages, and widely used for web apps and even backend development. Due to its dynamic nature, however, JS applications often have a reputation for poor software quality. As a…

Software Engineering · Computer Science 2024-09-12 Justus Bogner , Manuel Merkel

World action models (WAMs) provide a powerful generative framework for embodied control, yet transferring knowledge across heterogeneous WAMs remains challenging due to mismatched latent interfaces, high adaptation cost, and the rigidity of…

Robotics · Computer Science 2026-05-08 Yuhua Jiang , Yijun Guo , Hongbing Yang , Guojun Lei , Nuo Chen , Yinuo Zhang , Shaoqiang Yan , Bo Lin , Feifei Gao , Biqing Qi

Web applications increasingly face evasive and polymorphic attack payloads, yet traditional web application firewalls (WAFs) based on static rule sets such as the OWASP Core Rule Set (CRS) often miss obfuscated or zero-day patterns without…

Cryptography and Security · Computer Science 2026-01-15 Heba Osama , Omar Elebiary , Youssef Qassim , Mohamed Amgad , Ahmed Maghawry , Ahmed Saafan , Haitham Ghalwash

Autonomous web agents such as \textbf{OpenClaw} are rapidly moving into high-impact real-world workflows, but their security robustness under live network threats remains insufficiently evaluated. Existing benchmarks mainly focus on static…

Cryptography and Security · Computer Science 2026-03-20 Haochen Zhao , Shaoyang Cui