A smart contract is hard to patch for bugs once it is deployed, irrespective of the money it
holds. A recent bug caused losses worth around $50 million of cryptocurrency. We present …

In this paper, we present SeaHorn, a software verification framework. The key distinguishing
feature of SeaHorn is its modular design that separates the concerns of the syntax of the …

We designed, implemented, and deployed Alive2: a bounded translation validation tool for
the LLVM compiler's intermediate representation (IR). It limits resource consumption by, for …

Timing side-channels are arguably one of the main sources of vulnerabilities in
cryptographic implementations. One effective mitigation against timing side-channels is to …

A number of resource-intensive applications, such as augmented reality, natural language
processing, object recognition, and multimedia-based software are pushing the …

We present Low*, a language for low-level programming and verification, and its application
to high-assurance optimized cryptographic libraries. Low* is a shallow embedding of a …

Compilers should not miscompile. Our work addresses problems in developing peephole
optimizations that perform local rewriting to improve the efficiency of LLVM code. These …

Abstract Development of formal proofs of correctness of programs can increase actual and
perceived reliability and facilitate better understanding of program specifications and their …

Smart contract, one of the most successful applications of blockchain, is taking the world by
storm, playing an essential role in the blockchain ecosystem. However, frequent smart …

This paper outlines key design principles of Scilla---an intermediate-level language for
verified smart contracts. Scilla provides a clean separation between the communication …