meta f
play

Meta-F* Language Extensibility, Metaprogramming and Proof - PowerPoint PPT Presentation

Feb 10, 2023 •449 likes •1.29k views

Meta-F* Language Extensibility, Metaprogramming and Proof automation https://fstar-lang.github.io https://project-everest.github.io/ Interns, open-source MS MSR R Redm dmond ond INRIA A Paris contributors, visitors, Barry

  1. Meta-F* Language Extensibility, Metaprogramming and Proof automation https://fstar-lang.github.io https://project-everest.github.io/

  2. • Interns, open-source • MS MSR R Redm dmond ond • INRIA A Paris contributors, visitors, • Barry Bond • Danel Ahman alumns • Chris Hawblitzel • Kenji Maillard Guido Martinez • • Qunyan Magnus • Benjamin Beurdouche Zoe Paraskevopoulou • • Karthikeyan Bhargavan • Kiran Muthabatulla Yao Li • • Jonathan Protzenko • Victor Dumitrescu Joonwon Choi • • Tahina Ramananandro • Cătălin Hriţcu Clément Pit-Claudel • • Nikhil Swamy • Marina Polubelova Nick Giannarakis • • Gustavo Varo • CMU MU (P (Pitts ttsbu burgh) gh) Niklas Grimm • • MS MSR R Camb mbridg ridge Anita Gollamudi • Jay Bosamiya • Nadim Kobeissi • Antoine Delignat-Lavaud • Aymeric Fromherz • Matteo Maffei • Cédric Fournet • Bryan Parno • Asher Manning • Christoph M. Wintersteiger • Edinburgh • Monal Narasimhamurthy • Santiago Zanella-Béguelin • • Markulf Kohlweiss Gordon Plotkin • MS MSR R India ia • Perry Wang • • Aseem Rastogi Jean-Karim Zinzindohoue • Classified as Microsoft Confidential

  3. • Interns, open-source • MS MSR R Redm dmond ond • INRIA A Paris contributors, visitors, • Barry Bond • Danel Ahman alumns • Chris Hawblitzel • Kenji Maillard Guido Martinez • • Qunyan Magnus • Benjamin Beurdouche Zoe Paraskevopoulou • • Karthikeyan Bhargavan • Kiran Muthabatulla Yao Li • • Jonathan Protzenko • Victor Dumitrescu Joonwon Choi • • Tahina Ramananandro • Cătălin Hriţcu Clément Pit-Claudel • • Nikhil Swamy • Marina Polubelova Nick Giannarakis • • Gustavo Varo • CMU MU (P (Pitts ttsbu burgh) gh) Niklas Grimm • • MS MSR R Camb mbridg ridge Anita Gollamudi • Jay Bosamiya • Nadim Kobeissi • Antoine Delignat-Lavaud • Aymeric Fromherz • Matteo Maffei • Cédric Fournet • Bryan Parno • Asher Manning • Christoph M. Wintersteiger • Edinburgh • Monal Narasimhamurthy • Santiago Zanella-Béguelin • • Markulf Kohlweiss Gordon Plotkin • MS MSR R India ia • Perry Wang • • Aseem Rastogi Jean-Karim Zinzindohoue • Classified as Microsoft Confidential

  5. Goal: A secure channel Public Key Infrastructure accept(port); connect(server,port); request = recv(); send “GET…”; send “<html>…”; data = recv(); order = recv(); send “POST…”; … … Threat model

  6. Goal: A secure channel 20 years of attacks & fixes Public Key Buffer overflows Infrastructure Incorrect state machines Lax certificate parsing Weak or poorly implemented crypto Side channels Informal security goals Dangerous APIs accept(port); connect(server,port); Flawed standards request = recv(); send “GET…”; send “<html>…”; data = recv(); Mainstream implementations order = recv(); send “POST…”; … … OpenSSL, SChannel , NSS, … Threat model

  7. Much discussions RFC 8446: Aug 2018 IETF, Google, Mozilla, Microsoft, CDNs, cryptographers, network engineers, … Including many of our Much improvements proposals • Modern design • Fewer roundtrips • Stronger security New implementations required for all • An early implementer and verified too! Mentioning many formal models of the protocol, including our verified • Find & fix flaws before it’s too late implementation of the record layer

  8. Pr Proje ject t Ever erest est Ver erif ified ied Sec ecur ure e Compon ponents ents in th in the e TL TLS Ecosystem system TLS QUIC ECDH AES RSA SHA … Crypto Algorithms Network buffers Untrusted network (TCP, UDP, …)

  9. Ver erification fication T oo ools s an and d Met ethodo odolo logy gy F*: A general purpose programming language and verification tool

  10. Ver erification fication T oo ools s an and d Met ethodo odolo logy gy F*: A general purpose val nbytes 16 → programming u32 → Math spec in F* language nbytes len → poly1305_mac computes a ∧ and verification nbytes 32 → ST unit tool polynomial in GF(2 130 -5), ∈ ∧ ∈ ∧ ∈ requires λ → storing the result in tag , ensures λ → let in and not modifying let in anything else modifies ∧

  11. Ver erification fication T ools oo s an and d Met ethodo odolo logy gy F*: A general purpose val nbytes 16 → programming u32 → Math spec in F* language nbytes len → poly1305_mac computes a ∧ and verification nbytes 32 → ST unit tool polynomial in GF(2 130 -5), ∈ ∧ ∈ ∧ ∈ requires λ → storing the result in tag , ensures λ → let in and not modifying let in anything else modifies ∧ kreMLin void poly1305_mac(uint8_t *tag, uint32_t len, uint8_t *msg, uint8_t *key) { Efficient C Compiler from uint64_t tmp [10] = { 0 }; (a subset of) implementation uint64_t *acc = tmp F* to C uint64_t *r = tmp + (uint32_t)5; Verification imposes no uint8_t s[16] = { 0 }; runtime performance Crypto_Symmetric_Poly1305_poly1305_init(r, s, key); Crypto_Symmetric_Poly1305_poly1305_process(msg, len, acc, r); overhead Crypto_Symmetric_Poly1305_poly1305_finish(tag, acc, s); }

  12. 8 = Trusted = Verified Security spec Secure authenticated channel Protocol security proofs Protocol specs Implementation AES is a pseudo-random function Crypto assumptions

  14. Everest est in Action, n, so so fa far Production deployments of Everest Verified Cryptography

  15. Pr Proje ject t Ever erest est Ver erif ified ied Sec ecur ure e Compon ponents ents in th in the e TL TLS Ecosystem system TLS QUIC ECDH AES RSA SHA … Crypto Algorithms Network buffers Untrusted network (TCP, UDP, …)

  16. So what is this F* thing anyway?

  17. Two o camps ps of program ogram ver erificatio fication n to tool ols

  18. F*: Bridging the gap

  19. F*: Bridging the gap

  20. F*: Bridging the gap

  21. F*: Bridging the gap

  22. F*: Bridging the gap

  25. Beyond Pure Code Effects

  26. Beyond Pure Code Effects

  27. Beyond Pure Code Effects

  28. Beyond Pure Code Effects

  29. Effectful programs with Hoare-style Specifications

  30. Effectful programs with Hoare-style Specifications STEx > Tr

  31. Effectful programs with Hoare-style Specifications STExn

  32. Exploiting Expressiveness & Extensibility Low*: A subset of F* that compiles to C

  33. Low* to C And to support compilation to C, in nearly 1-1 correspondence, for auditability of our generated code Designed to allow manipulating a C-like view of memory

  34. Low* to C And to support compilation to C, in nearly 1-1 correspondence, for auditability of our generated code Designed to allow manipulating a C-like view of memory

  35. Low* to C And to support compilation to C, in nearly 1-1 correspondence, for auditability of our generated code Designed to allow manipulating a C-like view of memory Stack allocation

  36. Low* to C And to support compilation to C, in nearly 1-1 correspondence, for auditability of our generated code Designed to allow manipulating a C-like view of memory Stack allocation Pointer arithmetic

  37. Low* to C And to support compilation to C, in nearly 1-1 correspondence, for auditability of our generated code Designed to allow manipulating a C-like view of memory Erased specification Stack allocation Pointer arithmetic

  39. But SMT-based proofs can go awry

  40. And can be at a low level of abstraction

  41. Domain-specific languages, ad hoc proof automation, extensibility

  42. Domain-specific languages, ad hoc proof automation, extensibility elaborator reflection

  43. A passive compiler pipeline Parsing & Extraction aka Typechecker Desugaring Code generation

  44. A passive compiler pipeline Parsing & Extraction aka Typechecker Desugaring Code generation Higher-order Normalizer SMT Encoding Unification

  45. Scripting components with a metaprogram Parsing & Extraction aka Typechecker Desugaring Code generation Higher-order Normalizer SMT Encoding Unification

  46. Scripting components with a metaprogram Parsing & Extraction aka Typechecker Desugaring Code generation Higher-order Normalizer SMT Encoding Unification

  47. Scripting a language implementation from within the language

  48. From F* to Meta-F*, In three easy steps

  49. Proof-state: A collection of typed holes

  50. Metaprograms are proofstate transformers • Uses an existing F* effect for non-termination: Dv • The type of the state is an abstract type: proofstate • error is the type of exceptions State + Exception + Non-termination monad

  51. Metaprogramming as a user-defined effect • Standard definitions of return, bind, get, raise • Exceptions reset the state

  52. Metaprogramming as a user-defined effect

  53. Metaprogramming as a user-defined effect put

  54. Step 2 Primitive operations on Inl “Goal is not an arrow”

  55. Step 2 Primitive operations on Inl “Goal is not an arrow”

  56. Step 2 Primitive operations on Meta Inl “Goal is not an arrow”

  57. Step 2 Primitive operations on Meta “Goal is not an arrow”

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

META-NET and META Hans Uszkoreit Co-funded, by, the, 7th, Framework, Programme, of, the,

META-NET and META Hans Uszkoreit Co-funded, by, the, 7th, Framework, Programme, of, the,

META-NET and META Hans Uszkoreit Co-funded, by, the, 7th, Framework, Programme, of, the, European, Commission, through, the, contract, T4ME,, grant, agreement, no.:, 249119. Language Technology Everywhere spell checker in Microsoft Word

624 views • 33 slides
META Seal of Recognition and META Prize Award Ceremony Georg Rehm (DFKI) on behalf of the

META Seal of Recognition and META Prize Award Ceremony Georg Rehm (DFKI) on behalf of the

META Seal of Recognition and META Prize Award Ceremony Georg Rehm (DFKI) on behalf of the META Technology Council and the META-NET Executive Board

809 views • 28 slides
Lecture 31/Chapter 25 More about Meta-Analysis Benefits and Pitfalls An Application:

Lecture 31/Chapter 25 More about Meta-Analysis Benefits and Pitfalls An Application:

Lecture 31/Chapter 25 More about Meta-Analysis Benefits and Pitfalls An Application: Mendels Data Mozart Effect Meta-Analysis Details Sugar/Hyperactivity Meta-Analysis Details Issues in Meta-Analysis (Review) Which studies

532 views • 24 slides
Meta- Meta -Programming with Programming with Modelica Modelica for Meta- for Meta

Meta- Meta -Programming with Programming with Modelica Modelica for Meta- for Meta

Meta- Meta -Programming with Programming with Modelica Modelica for Meta- for Meta -Modeling and Modeling and Model Transformations Model Transformations Peter Fritzson, Adrian Pop Peter Fritzson, Adrian Pop OpenModelica Course, 2007

381 views • 14 slides
Meta-Programming in KDE The technology behind KConfig XT and friends Cornelius Schumacher The

Meta-Programming in KDE The technology behind KConfig XT and friends Cornelius Schumacher The

Meta-Programming in KDE The technology behind KConfig XT and friends Cornelius Schumacher The KDE Project KDE Developer Conference 2004 p.1 Overview What is Meta-Programmig? Flavors of Meta-Programming Code Generators in KDE libkabc

514 views • 34 slides
Meta Learning Shengchao Liu Background Meta Learning (AKA Learning to Learn) A

Meta Learning Shengchao Liu Background Meta Learning (AKA Learning to Learn) A

Meta Learning Shengchao Liu Background Meta Learning (AKA Learning to Learn) A fast-learning algorithm: quickly adapted from the source tasks to the target tasks Key terminologies Support Set &amp; Query Set C-Way K-Shot

2k views • 41 slides
Bayesian Model-Agnostic Meta-Learning Taesup Kim* (presenter), Jaesik Yoon* Ousmane Dia,

Bayesian Model-Agnostic Meta-Learning Taesup Kim* (presenter), Jaesik Yoon* Ousmane Dia,

Bayesian Model-Agnostic Meta-Learning Taesup Kim* (presenter), Jaesik Yoon* Ousmane Dia, Sungwoong Kim, Yoshua Bengio, Sungjin Ahn Model-Agnostic Meta-learning (MAML) gradient-based meta-learning framework meta-update task adaptation

886 views • 22 slides
Intelligent Tutoring Systems: A Meta-Analysis Meta-Analysis Wenting Ma March, 2011

Intelligent Tutoring Systems: A Meta-Analysis Meta-Analysis Wenting Ma March, 2011

Intelligent Tutoring Systems: A Meta-Analysis Meta-Analysis Wenting Ma March, 2011 Meta-Analysis Traditional methods of review focus on statistical significance testing Significance testing is not well suited to highly dependent on

469 views • 25 slides
Meta-meta-programming Dr Nic Williams drnicwilliams.com Boring definition Program that

Meta-meta-programming Dr Nic Williams drnicwilliams.com Boring definition Program that

Meta-meta-programming Dr Nic Williams drnicwilliams.com Boring definition Program that manipulates the real world Programming Image: http://www.kodak.com/US/images/en/corp/1000nerds/lund/nerdGirl.jpg Programming with Bash $ cat program

676 views • 52 slides
META-SHARE META SHARE the Open Resource Exchange Facility Stelios Piperidis ILSP-Athena RC,

META-SHARE META SHARE the Open Resource Exchange Facility Stelios Piperidis ILSP-Athena RC,

META-SHARE META SHARE the Open Resource Exchange Facility Stelios Piperidis ILSP-Athena RC, Greece spip@ilsp.gr META-FORUM 2010: Challenges for Multilingual Europe Brussels, Belgium, November 17/18, 2010 Data has become a key factor in LT

574 views • 31 slides
Company profile Capabilities Customers &amp; References META-LRA Kft. 8400 Ajka,

Company profile Capabilities Customers &amp; References META-LRA Kft. 8400 Ajka,

Short history Overview Company profile Capabilities Customers &amp; References META-LRA Kft. 8400 Ajka, Szent Istvn u. 1/A info@meta-lera.hu +36 20 293 0719 www.meta-lera.hu R1S SHORT HISTORY META-LRA Kft. was

509 views • 7 slides
Me Meta Lear Learnin ing A Bri Brief Introduct ction Xiachong Feng TG Ph.D. Student

Me Meta Lear Learnin ing A Bri Brief Introduct ction Xiachong Feng TG Ph.D. Student

Me Meta Lear Learnin ing A Bri Brief Introduct ction Xiachong Feng TG Ph.D. Student 2018-12-01 Ou Outline Introduction to Meta Learning Types of Meta-Learning Models Papers: Optimization as a model for few-shot

745 views • 60 slides
Meta-analysis provides the best and most reliable scientific evidence Meta-analysis aggregates

Meta-analysis provides the best and most reliable scientific evidence Meta-analysis aggregates

Meta-analysis provides the best and most reliable scientific evidence Meta-analysis aggregates evidence across several studies 1. Search literature 3. Select the studies of interest 5. Calculate effect sizes and 2. Screen articles for 4.

462 views • 15 slides
Individual Participant Data (IPD) Reviews and Meta analyses Lesley Stewart Director, CRD Larysa

Individual Participant Data (IPD) Reviews and Meta analyses Lesley Stewart Director, CRD Larysa

Individual Participant Data (IPD) Reviews and Meta analyses Lesley Stewart Director, CRD Larysa Rydzewska, Claire Vale MRC CTU Meta analysis Group On behalf of the IPD Meta analysis Methods Group IPD systematic review / meta analysis

865 views • 65 slides
Meta Reinforcement Learning Kate Rakelly 11/13/19 Questions we seek to answer Motivation : What

Meta Reinforcement Learning Kate Rakelly 11/13/19 Questions we seek to answer Motivation : What

Meta Reinforcement Learning Kate Rakelly 11/13/19 Questions we seek to answer Motivation : What problem is meta-RL trying to solve? Context : What is the connection to other problems in RL? Solutions : What are solution methods for meta-RL and

787 views • 52 slides
A few meta learning papers Guy Gur-Ari Machine Learning Journal Club, September 2017 Meta

A few meta learning papers Guy Gur-Ari Machine Learning Journal Club, September 2017 Meta

A few meta learning papers Guy Gur-Ari Machine Learning Journal Club, September 2017 Meta Learning Mechanisms for faster, better adaptation to new tasks Integrate prior experience with a small amount of new information

700 views • 28 slides
Disclosures Discussion of non-FDA approved Updates in Perioperative Medicine indications

Disclosures Discussion of non-FDA approved Updates in Perioperative Medicine indications

Disclosures Discussion of non-FDA approved Updates in Perioperative Medicine indications No non-FDA approved therapies discussed No financial ties to industry Hugo Quinny Cheng, MD Division of Hospital Medicine No contact

335 views • 10 slides
First validation of AIRS, MOPITT and IASI CO total column over severe wildfires: implications for

First validation of AIRS, MOPITT and IASI CO total column over severe wildfires: implications for

First validation of AIRS, MOPITT and IASI CO total column over severe wildfires: implications for top-down emission estimates . Leonid Yurganov, JCET/University of Maryland Baltimore County, in collaboration with V. Rakitin, A. Dzhola, E.

427 views • 16 slides
6 6 Here e There re Be Giants ts We have a little sister, The Little Sister and her

6 6 Here e There re Be Giants ts We have a little sister, The Little Sister and her

Th The Kin e King Who Fel g Who Fell l 6 6 Here e There re Be Giants ts We have a little sister, The Little Sister and her breasts are not yet grown. What shall we do for our sister on the day she is spoken for? If she is a wall,

269 views • 22 slides
Equations and Identities Multi Step Equations Distributing Fractions in Equations Writing and

Equations and Identities Multi Step Equations Distributing Fractions in Equations Writing and

Slide 1 / 249 Slide 2 / 249 7th Grade Equations &amp; Inequalities 2015-10-16 www.njctl.org Slide 3 / 249 Slide 4 / 249 Table of Contents Click on a topic to Equations and Identities go to that section. Solving an Equation for a Variable

604 views • 42 slides
HOW PRINCESS TEACHES YOU TO THINK Thomas Baar KeY-Workshop Summer 2016, Giersch-Chalet, France

HOW PRINCESS TEACHES YOU TO THINK Thomas Baar KeY-Workshop Summer 2016, Giersch-Chalet, France

HOW PRINCESS TEACHES YOU TO THINK Thomas Baar KeY-Workshop Summer 2016, Giersch-Chalet, France Results of my Sabbatical in Russia (including outcome of discussions at PSI 2015 in Kazan ) In Memoriam Helmut Veith (February 5, 1971 -- March 12,

450 views • 22 slides
Beautiful World Landmarks &amp; Scenery Jef St. Marys Altar Krakow - Poland Corsica -

Beautiful World Landmarks &amp; Scenery Jef St. Marys Altar Krakow - Poland Corsica -

Beautiful World Landmarks &amp; Scenery Jef St. Marys Altar Krakow - Poland Corsica - France Queen Victoria Clock in Chester - England Waves crashing Cornish coastline Feb 1 - 2014 Prague Czeck Republic Secluded beach Amalfi coast -

364 views • 35 slides
What is most helpful for transformation to Regional Climate Adaptation Governance: Spatial Scale,

What is most helpful for transformation to Regional Climate Adaptation Governance: Spatial Scale,

What is most helpful for transformation to Regional Climate Adaptation Governance: Spatial Scale, Juristical Hierarchy or/and Multi-Level-Perspective Dr.-Ing. Manuel Gottschick KLIMZUG-NORD University of Hamburg International Symposium The

480 views • 17 slides
DiscoPoP: A Profiling Tool to Identify Parallelization Opportunities Zhen Li, Rohit Atre, Zia

DiscoPoP: A Profiling Tool to Identify Parallelization Opportunities Zhen Li, Rohit Atre, Zia

DiscoPoP: A Profiling Tool to Identify Parallelization Opportunities Zhen Li, Rohit Atre, Zia Ul-Huda, Ali Jannesari, and Felix Wolf 02.10.2014 Outline Background Approach Results 2 01.10.2014 Background Multicore CPUs

1.14k views • 96 slides

More recommend