Skip to Main content Skip to Navigation
Conference papers

Formally Verified Cryptographic Web Applications in WebAssembly

Abstract : After suffering decades of high-profile attacks, the need for formal verification of security-critical software has never been clearer. Verification-oriented programming languages like F * are now being used to build high-assurance cryptographic libraries and implementations of standard protocols like TLS. In this paper, we seek to apply these verification techniques to modern Web applications, like WhatsApp, that embed sophisticated custom cryptographic components. The problem is that these components are often implemented in JavaScript, a language that is both hostile to cryptographic code and hard to reason about. So we instead target WebAssembly, a new instruction set that is supported by all major JavaScript runtimes. We present a new toolchain that compiles Low * , a low-level subset of the F * programming language, into WebAssembly. Unlike other WebAssembly compilers like Emscripten, our compilation pipeline is focused on compactness and auditability: we formalize the full translation rules in the paper and implement it in a few thousand lines of OCaml. Using this toolchain, we present two case studies. First, we build WHACL * , a WebAssembly version of the existing, verified HACL * cryptographic library. Then, we present LibSignal*, a brand new, verified implementation of the Signal protocol in WebAssembly, that can be readily used by messaging applications like WhatsApp, Skype, and Signal.
Complete list of metadatas

Cited literature [49 references]  Display  Hide  Download
Contributor : Denis Merigoux <>
Submitted on : Monday, September 23, 2019 - 7:54:49 PM
Last modification on : Wednesday, September 25, 2019 - 9:57:26 AM
Document(s) archivé(s) le : Sunday, February 9, 2020 - 9:53:23 AM


Files produced by the author(s)




Jonathan Protzenko, Benjamin Beurdouche, Denis Merigoux, Karthikeyan Bhargavan. Formally Verified Cryptographic Web Applications in WebAssembly. SP 2019 - 40th IEEE Symposium on Security and Privacy, May 2019, San Francisco, United States. pp.1256-1274, ⟨10.1109/SP.2019.00064⟩. ⟨hal-02294935⟩



Record views


Files downloads